Cyberclue also provides support in cases not strictly classified as cyber attacks, but which require detection and evidence gathering – such as internal data leaks or fraudulent activity by competitors.
Every year, we conduct dozensof analyses, delivering the knowledge an evidence our client need – regardless of their industry or specific situation.
DFIR activities, as appropriate, include:
- Identification of the IP address from which the hacking or other crime occurred
- Identification of the vulnerability that made the intrusion possible
- Analysis of the process that allowed the adverse effect to occur
- Checking whether the security of other, related systems or applications has been compromised
- Detection of back doors left by the threat actor and analysis, if identified
The final report includes suggestions to enhance your security.
We can assist you with the implementation of suggested changes.
Additionally, we prepare detailed reports to law enforcement, including key information about the attack, such as type, IP addresses involved and any loses sustained.