Remediation Services

Structure. Order. Experience and Calm. These are the things that defines us when it comes to incident responses when a client has been breached. The threat of being breached is the new reality for organizations worldwide. It is not a matter of if you will be breached, it is a matter of when. Unfortunately most organizations are not proactive in their approach to information security; until they have been attacked.

As a provider of security remediation services, Unyk Solutions offers a proven remediation roadmap that consists of rapid identification, analysis and securing of vulnerabilities. Unyk Solutions offers a wide range of security solutions, including application vulnerability identification; root cause analysis; remediation road mapping; and technology selection, training and implementation. Our focus on security and partnerships with best-of-breed technology companies ensures that our team of security experts can help companies of all shapes and sizes plan for and deploy remediation solutions.

Our procedure after an attack.

We confirm whether an attack has actually taken place.

Identifying whether a hacking attack has occurred is incredibly challenging for most businesses. Referenced findings from cyber-security firm Mandiant showed that it takes companies an average of 416 days from the initial attack to detect a security breach.

To detect an attack, we advice IT Managers to develop and maintain a basic awareness of the normal operations of their business. Once you’re aware of how your network works, the applications people use and the amount of bandwidth they chew up, you’ll be able to spot anomalies that will help you identify an attack.”

Warning signs might include machines that are suddenly running slowly or crashing, strange network usage patterns, huge transfers of data to unknown destinations or visits from unfamiliar IP addresses (for instance, visits from Eastern European IP addresses when your business’s customers are all based in Nairobi).

We Investigate the Scope of the Compromise.

The next step is to figure out how many systems or machines have been affected by the compromise. We will be able to identify the type of attack being utilized by the hacker, conduct a network and malware analysis, and figure out which systems and data files have been compromised.

From there we will also be able to tell you whether the attack was mass-produced –something an employee might have picked up by browsing a compromised website – or whether it was a unique, targeted attack, which might suggest that the perpetrator was a competitor of some sort.

We contain the attack

Once the scope of the compromise has been determined, all systems should be pulled offline simultaneously. While the knee jerk response might be to pull the plug on machines as soon as a compromise has been detected, waiting until a thorough investigation has been conducted will better serve in figuring out how to protect the system from future attacks.

We Remediate and Repair Systems to Prevent Future Attacks

Using the information we’ve learned about the breach, we close the gaps in your systems, so it doesn’t happen again.”

A big part of the remediation process is changing your employees’ behavior; employees are a small business’s weakest security points. “By quickly clicking into emails from strange senders or accessing infected sites, employees can lead to a security breach.

We recommend using web app firewalls, which can shield your website from attacks, and web filtering services, which will protect your employees from compromised websites that they might visit on work devices.

Communicate Breaches Effectively

The reality is that many companies get hacked at some point, and communication with the customer base is critical.” We believe that customers should be informed to the extent possible, which will actually help build trust between their business and clients, as long as they effectively communicate that you are making all efforts to prevent another attack.

Depending on what type of data has been compromised, you may also have a legal obligation to inform your consumers. This is most likely the case if personal information or financial data has been breached in any way; individual laws differ for different jurisdictions.