Macnica provides Sysmex with Attack Surface Management service that inventoryes vulnerable publicly available assets from a cyber attacker's perspective - Assets that could be targeted by attackers across all group companies, including global bases, are made visible, enabling countermeasures to be taken based on priority -

Macnica (Headquarters: Yokohama, Kanagawa Prefecture, President: Kazumasa Hara, hereinafter referred to as "Macnica"), a total Services & Solutions provider in semiconductors, networks, cybersecurity, and AI/IoT, today announced that SYSMEX CORPORATION (Headquarters: Kobe, Hyogo Prefecture, Representative Chairman of the Board and President and CEO: Hisashi Ietsugu, Sysmex) is pleased to announce that it has provided an Attack Surface Management service that conducts investigations of externally exposed assets based on domain information.

■ Background
In recent years, with the advancement of medical services and the development of digital technology, hospital systems that used to be in a closed network environment are connected to external networks, and the medical industry is exposed to the threat of cyberattacks. I was. Ransomware, which is particularly prevalent among cyberattacks, often intrudes into corporate networks from VPN devices and remote desktops that have been exposed to the outside without being sufficiently managed, and according to a survey by the National Police Agency, 74% of the infection routes. occupies ^*In addition, as a characteristic of Japanese companies, there are many cases of infringement via externally disclosed assets of overseas bases that are not well managed, leading to incidents.
Sysmex-CSIRT, the incident response team for Sysmex, a comprehensive healthcare company that conducts everything from research and development to manufacturing, sales, service, and support for equipment, reagents, and software used in laboratory testing, proactively implements various security measures. In promoting this, I had a strong sense of urgency regarding the management and countermeasures for vulnerable externally exposed assets exposed to threats. Therefore, we decided to use the Attack Surface Management service of Mpression Cyber Security Service™ in order to identify the assets that really needed to be dealt with among our publicly available assets.

■Investigation methods unique to Macnica, which is well-versed in cyber attacks
The Attack Surface Management service utilizes Macnica 's specialized knowledge and techniques regarding cyber attacks to investigate a company's externally disclosed assets and advise on countermeasures.

The flow of this service is as follows.
1. Macnica specialists investigate and inventory customer-related externally disclosed assets (stray assets) using the same perspective/techniques as cyber attackers.
2.Select those that need to be dealt with from among stray assets
3.Provide countermeasure advice such as removal, configuration change patch application, vulnerability diagnosis, etc.

A feature of this service is that Macnica, which is familiar with the methods used by cyber attackers, investigates externally disclosed assets using the same methods used by cyber attackers. Similar to the Attack Surface investigation when a cyber attacker attempts to infiltrate a target company, the customer company's headquarters domain and group company domain are used as initial values, and the connections between related domains and IP addresses are traced to identify customer-related assets. Do a washout. This makes it possible to cover externally exposed assets and high-risk vulnerabilities that could be targeted by attackers, including assets that are deployed globally and are unknown to customers themselves. We provide countermeasure advice based on evidence-based pinpoint information on customer-specific vulnerabilities, which can lead to efficient and effective countermeasures.

■ Effects of introduction and future prospects
Sysmex-CSIRT explains its security measures in an easy-to-understand manner based on the vulnerability risk classification results and countermeasure advice specific to the company's assets provided by this service. We were also able to make proposals to executives for further security strategy promotion. In the future, we plan to proactively deploy the information related to incident response that can be obtained from this service to the medical industry, so that the entire industry can work together to solve social issues.

Macnica will continue to support our customers' security operations by leveraging our specialized knowledge and high technical capabilities.

[Click here for details of this service]
https://www.macnica.co.jp/business/security/manufacturers/mpressioncss/asm.html

[Click here for details of the case]
https://www.macnica.co.jp/business/security/manufacturers/mpressioncss/case_04.html

*Source: “About threats surrounding cyberspace in 2021” (National Police Agency)
(https://www.npa.go.jp/publications/statistics/cybersecurity/data/R03_cyber_jousei.pdf)

*Company names and product names mentioned in this text are trademarks or registered trademarks of Macnica and each company.
*The information published in the news release (including product price, specifications, etc.) is current as of the date of announcement. Please note that the information may be subject to change without prior notice.