Contact Us
Anti-Phishing Services
Electronic thieves use phishing attacks to deceive people into revealing account information in order to steal. These attacks are complex in nature and attack methods are evolving rapidly. Phishing attacks erode consumer confidence resulting in lost sales, unwanted publicity, increased costs and potential legal action.
When institutions are attacked, they often lack the process, knowledge and resources to respond quickly and effectively. And Phishers usually attack after hours and on weekends — when you are least able to respond. 24 hours a day and 365 days a year, SecureWorks provides the tools and expertise to restore customer confidence and turn the tables on the attackers.
SecureWorks provides the following Anti-Phishing services to help companies both prior to and after a phishing incident occurs.
Phishing Incident Preparation
Phishing Incident Response Plan
Having an incident handling plan in hand during the time immediately following an attack is critical. The incident handling plan provides a detailed response blueprint including procedures, processes, responsibilities, and points of contact. This plan will reflect roles and responsibilities as well as steps for communicating time-sensitive phishing-related information.
Phishing Incident Response
Incident Analysis & Forensics
SecureWorks' security professionals are available 24 hours a day, 7 days a week, 365 days a year to begin incident response. If you are experiencing a phishing attack, contact our Security Operations Centers at 877-884-1110. Within 30 minutes of notification, SecureWorks will begin responding to the phishing incident. The team will start by laying out the details of the attack, including:
- Networking analysis: traceroute, DNS lookups, ARIN searches, OS fingerprinting, scanning, system enumeration, foot-printing, etc
- Application analysis: website code reviews, email analysis, server configuration, etc
- Research: IRC, USENET, Websites
- Propagation methodologies and magnitudes
- Severity Assessment
- Log review: web logs, server logs, firewall logs, etc
Countermeasures and Coordination
SecureWorks will recommend, coordinate, manage and facilitate an appropriate selection of countermeasures. Our staff has foreign language translation capabilities that cover 78% of all Phishing incidents. We work with key anti-phishing and security organizations including FIRST (the Forum of Incident Response and Security Teams; SecureWorks is a full member), the United States FBI and Secret Service, CERT (Computer Emergency Readiness Team), and the Anti-Phishing working group. We also work with local and foreign ISP’s, foreign law enforcement, and vendors.
Interim Reporting
SecureWorks will provide Interim reports to keep key personnel apprised of the response and other involved parties.
Post Incident Analysis and Management Report
After a major incident has been handled, SecureWorks will review and document how effective the incident handling process was and work to identify needed improvements to existing security controls and practices. SecureWorks will produce a post-incident report with a jargon free executive summary that discusses the business and compliance impacts on your organization, your business and your customers.
