New RSA(SM) CyberCrime Intelligence Service Helps Prevent Theft of Enterprise Data and User Identities

April 15, 2010

BEDFORD, Mass., April 15 /PRNewswire/ — RSA, The Security Division of EMC (NYSE: EMC) announced the new RSA(SM) CyberCrime Intelligence Service designed to help organizations identify computers, information assets and identities compromised by Trojans and other online attacks. The managed service is powered by the RSA® Anti-Fraud Command Center and helps IT professionals further understand and isolate possible points of exposure within their enterprise environments so they can adjust security controls and close gaps to better protect their organizations against the theft of corporate resources by fraudsters.

Advanced forms of malware such as the Zeus Trojan can silently capture a wide variety of data and credentials contained on enterprise computers and laptops, including proprietary information such as legal documents, healthcare records and corporate secrets. However, many organizations are not aware of the impact of malware within their systems that pose a significant threat to their information and bottom line. Recent research by the RSA Anti-Fraud Command Center reveals widespread compromise within networks belonging to Fortune 500 companies. Within this group of some of the world’s largest corporations, RSA identified that 88 percent (441 in total) had systems accessed by infected machines and 60 percent of the firms (299 in total) had experienced stolen email account information.

“We are seeing a celestial alignment within the world of online fraud which means that a much broader segment of corporate Internet users are being targeted by criminals who are looking to steal more than just credit card numbers and consumer identities. Advanced, stealthy Trojans like Zeus that are detected less than 46% of the time* and are readily available to online criminals who are interested in stealing information for illegal gain,” according to Uri Rivner, Head of New CyberCrime Technology at RSA. “Moreover, we estimate that the wildfire infection of these Trojans has expanded ten times between 2008 and 2009.”**

The RSA CyberCrime Intelligence Service is designed to identify a subscribing organization’s compromised computers and user credentials including those that are leveraged via remote access. It is engineered to provide information security professionals with actionable knowledge and information necessary to adjust policies and controls to prevent the loss of data to malware and careless employee activities. Security managers can use the information and analysis provided by the service to react to and remediate potential data exposures, employee identity theft, as well as infected corporate resources. The new service is based on the RSA FraudAction(SM) service and leverages 24×7 monitoring and detection, alerts and reporting provided by RSA’s team of experienced fraud analysts.

“Many enterprise IT professionals accept ‘good enough security’. They install tools to detect malware, enforce security policy, and monitor user behavior. However sophisticated, targetable malware technology makes it difficult for security controls to defend the enterprise from organized criminal threats,” said Sally Hudson, research director for Security Products at IDC. “To maintain the edge in protection, enterprises must have real time knowledge and awareness of the current malware and threats that may be attacking computers in their extended enterprise. Armed with a better understanding of the threats to the enterprise, IT professionals can concentrate on providing effective security solutions and controls that will mitigate threats, ultimately reducing fraud, data loss, and intrusions.”


Offered as an outsourced, managed service, the RSA CyberCrime Intelligence Service is quickly deployed and enables organizations to minimize resource investments. The RSA CyberCrime Intelligence Service will be available worldwide by May 1, 2010. For more information, visit www.rsa.com/cybercrime or call RSA Product Sales at +1-800-495-1095.

About the RSA Identity Protection and Verification Suite

The RSA® Identity Protection and Verification Suite offers one of the most complete and innovative portfolios of strong authentication and anti-fraud technologies, and is engineered to protect organizations and their online users against the latest external threats. The Software-as-a-Service (SaaS) and managed services portfolio is designed to help increase activity in online and remote transactions, inspire user confidence, and reduce fraud losses and related costs.

*Source: Zeus Tracker

**Source: RSA White Paper, Malware & The Enterprise: Understanding the Potential Impact of a Trojan Infection, April 2010

About RSA

RSA, The Security Division of EMC, is the premier provider of security solutions for business acceleration, helping the world’s leading organizations succeed by solving their most complex and sensitive security challenges. RSA’s information-centric approach to security guards the integrity and confidentiality of information throughout its lifecycle – no matter where it moves, who accesses it or how it is used.

RSA offers industry-leading solutions in identity assurance & access control, data loss prevention, encryption & key management, compliance & security information management and fraud protection. These solutions bring trust to millions of user identities, the transactions that they perform, and the data that is generated. For more information, please visit www.RSA.com and www.EMC.com.

EMC, RSA, FraudAction and eFraudNetwork are either registered trademarks, trademarks or service marks of EMC Corporation in the United States and other countries. All other products and/or services are trademarks of their respective owners.

SOURCE EMC Corporation

Source: newswire

comments powered by Disqus