Major incident factors in recent years

According to the recently published multiple period investigation reports, the top incident cause is “caused by externally disclosed assets”.

Why are there so many security incidents now?

Attack techniques have changed in recent years and are extremely effective at exploiting weaknesses in enterprise security.

What is ASM (Attack Surface Management)?

Attack Surface Management (ASM) is an initiative to identify and manage assets (Attack Surface) that can be used as attacks by cyber security threats.

Since the first step of ASM starts with an accurate grasp of assets, it is necessary to comprehensively grasp the company's assets.

Key points that customers should do with ASM

The important points when implementing ASM are not only the current situation, but also the comprehensive "understanding" of assets that can respond to changes in the future, and the "priority" of countermeasures that take into account the urgency and importance of the identified asset risks. ranking”.

Overall image

Macnica Attack Surface Management is a completely proprietary Macnica product that focuses on "understanding" the most important points and "prioritizing responses". Using the unique knowledge of our Security Research Center, we conduct a comprehensive investigation of assets, including those that are not yet known, and risk investigations that take into account the trends of attackers.

Macnica 's proud group of security experts - Security Research Center -

Macnica Attack Surface Management utilizes the knowledge of experts at the Security Research Center, who are well-versed in the trends and methods of cyber attacks both in Japan and overseas, to discover assets and assess threats from an attacker's perspective.

manager of centre
Kenzo Masamoto

Assistant Director
Yutaka Sejiyama

Chief
Ryo Shota

Chief
Hajime Yanagishita

chief
Hiroshi Takeuchi

chief
Takeshi Teshigahara

chief
Goya Yamazaki

Chairman
Yuji Kakeya

Solution features and research methods

We utilize the unique knowledge of our Security Research Center experts to conduct accurate and comprehensive research.

We use the customer's head office domain and group company domains listed on the website as the initial values, check the Whois information, MX records, NS records, etc., and from there trace the connections between related domains and IP addresses to identify customer-related assets.
We can also identify assets, including domains, unauthorized servers, and overseas bases, that you yourself are not aware of.

Survey image

Output Samples -Now/What/Priority Should Be Implemented-

We provide reports and a portal that allow you to easily understand unidentified assets, risk indicators, and response priorities at a glance and use them immediately.

With English translations and recommended actions included, it is easy to explain to overseas bases and group companies.

Portal function for administrators

This is a portal designed to reduce the operational burden of continuously managing assets available to the public.

feature

• View company-related assets and visualize connections
  Only the results of scrutiny and triage of discovered public assets and risk information are displayed on the portal. You can check the connection between your own company's domains, subdomains, IP addresses, services, and other asset information and the asset information of each organization (overseas bases and group companies). You can assign any tag information to each asset and manage it.
  
• Progress management of risk management
  The status of countermeasures against risks such as vulnerabilities and externally exposed ports can be visualized in an easy-to-understand manner. The countermeasure status is preset with the statuses required for ASM operation based on Macnica ASM's many years of experience, and the timeline for countermeasures against each risk can be recorded with simple operations.
  
• Vulnerability management
  For vulnerabilities and risks that are disclosed daily, experts perform risk-based assessments based on attacker trends and the impact of exploitation, and after setting appropriate priorities, alerts are sent only for risks that require action. Notifications are sent immediately via email, and in parallel with this, risk information, recommended actions, and reference information (such as information from manufacturers) can also be viewed on the portal.
  

Download materials here

User company interviews

Primary Distributor

NTT Communications Corporation Corporation

Difference from vulnerability diagnosis

Customer survey case study of our solution implementation ①

Customer survey case study of our solution implementation ②