회사소개

제품

안내

고객지원

Company Overview

Product

Information

Support

Thông tin về công ty

Sản phẩm

Thông tin

Hỗ trợ chung

ZombieZERO Series

Interworking Analysis between Endpoint-based and Network-based systems

ZombieZERO Series

ZombieZERO Series  Introduction

APT(Advanced Persistent Threat) is a new hacking technique used by cyber criminals to persistently attack target victims using various methods(email, web, etc.) until an objective is achieved.APT’s attacking method is to take control of the inside employee’s PC in specific organization, access the internal server or database through the PC, and remove or destroy confidential information.

Ransomware: A type of malware that encrypts all images and document files on a PC and restricts access and requires money in exchange for decryption.

Zombie ZERO is a new security solution designed to detect and defend against unknown APT and Ransomware attacks. It provides robust information security to prevent ransomware, data exfiltration and network damages.
It is composed of the behavior-based defense product on Endpoint (EDR) and the packet analysis product based on behavior on Network (Inspector) and interworking with each other. So it minimizes the false positive rate and enables accurate judgment and prompt response, and detects / blocks malware that bypasses the network and infiltrates.
It can be operated as a cloud type.

npcoreNetwork-based Detection and Analysis
npcore
npcoreEndpoint-based Detection and Quarantine
npcore
npcoreTWO-LEVEL Defense System

TWO-LEVEL Defense System of   ZombieZERO Series

The two-level defense system of ZombieZERO Series, which interworks between an endpoint-based behavioral defense system and a network-based behavioral detection system, can defend the infiltrating malware that bypasses a network and responds with lower false-positive rates quickly and accurately.

npcore

Accurate detection with minimal false-positive rates

Robust two-level defense / Immediate response to security threats

Detection / blocking for network-bypassing malware

ZombieZERO Series  Features

Interworking Analysis between Endpoint-based and Network-based systems
  • Accurate detection with minimal false-positive rates through interworking between endpoint-based and network-based analysis.
  • Independent behavior analysis on endpoint-based and network-based systems.
  • Malware detection and blocking from bypassing the network security systems such as encrypted traffic, and other hidden threats.
  • Blocking harmful outbound traffic.
TWO-LEVEL Defense
  • Firstly, behavior-based engines on network respond to the infiltrating files and secondly, behavior-based engines on endpoint respond to them one more time.
Multiple Analysis
  • A signature-based anti-virus engine detects only known malware, but behavior-based engines detect unknown malware also.

ZombieZERO Series’ overall system configuration Diagram

npcore

ZombieZERO Series’ Product Configuration

npcore