Public Relations

Asgent Announces "IntSights Threat Intelligence Service", will Detect Corporate Risks on the Dark, Deep and Surface Web Through Threat Intelligence to Take Proactive Measures for Cyber-Attacks
- Supports Japanese Language

February 21, 2018
Asgent, Inc.
（JASDAQ: 4288）

Asgent, Inc. (JASDAQ: 4288, President & CEO: Takahiro Sugimoto, located in Chuo-ku, Tokyo) , a pioneer in network security and operations management solutions, announces signing of a partnership agreement with IntSights Cyber Intelligence, Inc. (CEO & Co-Founder: Guy Nizan, located in Israel) and the start of sales of "IntSights Threat Intelligence Service", which supports Japanese and uses the same company´s technology.

[Background]

Starting with global cyber-attacks that occurred last year, the number of large-scale cyber-attacks is continuing to increase worldwide. Also, looking forward to the 2020 Tokyo Olympic and Paralympic Games, a further increase in cyber-attacks is projected for Japan. Many malicious crackers buy and sell hacking tools and personal information on the Dark Web^※1, which consists of sites that normal Web browsers cannot access. Also, there is a possibility that Dark Web trading sites may have been used for exchanging illegally gained crypto-currency.
  Therefore, in order to understand the indicators and trends behind attacks and prepare for them, it is necessary to accurately gauge whether or not an organizations´ information is being traded on the Dark Web. Also, learning about attack campaigns (trends) being discussed on the Dark Web and reflecting that knowledge in one´s own security countermeasures is essential. For example, if you could find that your company´s name was on an attack target list on the Dark Web, then it would be possible to create countermeasures before being attacked.

※1 Classified into the Surface Web where anyone can access on the Internet and the Deep Web, which search engines are unable to perform searches on (including member-only sites, online banking sites etc.). The Surface Web contains about 4% of the total, with the remainder on the Deep Web. Also, inside the Deep Web is the Dark Web, which includes hacker forums, C&C servers etc. A dedicated browser is required to access the Dark Web.

[IntSights Threat Intelligence Service]

The IntSights Threat Intelligence Service collects various types of information being traded and discussed on the Surface, Deep and Dark Web, using a unique algorithm and machine learning. Those companies who use the service register keywords related to themselves (Web domain, names of management, brand etc.) and can receive information related to threats to the company as alerts.
  In the case of crypto-currency being exchanged on the Dark Web, IntSights has confirmed that this site was still functioning as of February 15. If a company were to use IntSights, it would be possible to determine that they were being targeted for attack and that stolen goods were being traded on the Dark Web afterwards. In addition, as an overseas use case, IntSights is being used to discover business risks. In one telco provider, by using IntSights, they were able to determine that a database containing customer information was being sold on the black market, which led to them becoming aware of an internal breach and the police capturing the perpetrator.
  Also, because the product collects information on the Surface Web as well as the Dark and Deep Web, it is possible to discover and take action against malicious SNS postings using keywords, phishing sites claiming to be the company in question and illegal fake apps which can lead to a decrease in corporate brand trust.
  In Japan, a short-term license will be provided to determine attack indicators against important government events and academic venues. Also, the service is planned to be provided from mid-March 2018, with a list price for the short-term license starting at JPY2,920,000 (tax excl.), and with a sales target of 30 customers initially.

[Main Features of the IntSights Threat Intelligence Platform Service]

Providing Cyber Intelligence
- Collecting information from the Surface, Deep and Dark Web using unique algorithm and machine learning
-Providing cyber intelligence tailored to individual companies based on information such as company name, management member’s names, brand names (Japanese/English), domain, IP address etc.

Automated Remediation Function and Security Hub Function
-One-click takedown of phishing sites and malicious domains
-Integration with major firewall vendors such as Check Point, endpoint security and SIEM vendors to automatically update blacklist data

Threat Analysis
-Investigation and analysis of threats by country and industry
-Provision of trending information of malware campaigns based on analysis of the Dark Web
-Identification of spoofed domains etc. through collating link information collected from tens of thousands of information sources

※Company and product names are the trademarks or registered trademark of the respective companies.