Macnica Released a new web portal designed specifically for ASM operations in its proprietary service "Macnica Attack Surface Management"

Macnica (Headquarters: Yokohama, Kanagawa Prefecture, Representative Director and President: Kazumasa Hara, hereinafter referred to as "Macnica") today announced that it will start providing a web portal for customers as a new feature of its proprietary Macnica Attack Surface Management (hereinafter referred to as Macnica ASM).

In recent years, the methods and trends of cyber attacks on companies have changed, resulting in a large number of incidents targeting vulnerable systems that face the Internet. As a result, an increasing number of companies are promoting Attack Surface Management (ASM) initiatives to comprehensively understand and address their company's publicly available assets and the risks they pose.

In June 2021, Macnica was one of the first Japan companies to launch its own Macnica ASM. In the previous specification, we provided risk information detected by regular reports and emails, but now we are releasing a web portal as part of usability improvement. This portal is characterized by a UI designed specifically for ASM operations of Japanese companies and the display of only information that truly needs to be addressed after being scrutinized and triaged by professionals.

<Portal top page image>

Many ASM products display a large amount of information that is automatically detected by the product, so the user must carefully examine whether the assets displayed are actually their own assets and determine the risks and priorities that need to be addressed. In addition to the burden of risk management such as patch application and configuration changes, the operation of the product also places a heavy burden on the users, so even if they introduce ASM products, they end up not being able to operate them and are not able to utilize them.

In the Macnica ASM portal, experts eliminate unnecessary alerts that become noise as much as possible and provide information after narrowing down the risks that require action, so you can manage and deal with risks accurately without being bothered by a large number of false positive and vulnerability alerts.In addition, because it is designed specifically for ASM operation, it also functions as a communication tool that centrally manages customer asset information and response status, supporting efficient operation.

Key features of Macnica ASM Portal include:

1: View company-related assets and visualize connections
Only the results of scrutiny and triage of discovered public assets and risk information are displayed on the portal. You can check the connection between your own company's domains, subdomains, IP addresses, services, and other asset information and the asset information of each organization (overseas bases and group companies). You can assign any tag information to each asset and manage it.

2: Progress management of risk management
The status of countermeasures against risks such as vulnerabilities and externally exposed ports can be visualized in an easy-to-understand manner. The countermeasure status is preset with the statuses required for ASM operation based on Macnica ASM's many years of experience, and the timeline for countermeasures against each risk can be recorded with simple operations.

3: Vulnerability management
For vulnerabilities and risks that are disclosed daily, experts perform risk-based assessments based on attacker trends and the impact of exploitation, and after setting appropriate priorities, alerts are sent only for risks that require action. Notifications are sent immediately via email, and in parallel with this, risk information, recommended actions, and reference information (such as information from manufacturers) can also be viewed on the portal.

About Macnica ASM
This ASM solution utilizes the unique knowledge of the Security Research Center ^*1 and uses "human hands and eyes" as necessary to achieve accurate and comprehensive investigations. It enables the identification of assets, including overseas locations, such as domains and rogue servers that customers themselves are not aware of, and allows effective measures to be taken starting with the truly high-risk assets based on a unique risk index that takes into account the trends of attackers. It has been well received by many customers and has achieved the number one share ^*2 in the domestic ASM tool market.

Cybersecurity attacks that exploit externally exposed assets are expected to continue in the future. Macnica will continue to expand its functionality to make Macnica ASM easy for customers to use, and will strive to reduce the probability of incidents caused by externally exposed assets by as much as 1%.

*1: A research institute of Macnica that researches targeted attacks against Japan and contributes the knowledge gained to various social activities.
*2: Fuji Chimera Research Institute, Inc., market research report "Network Security Business Research Overview" issued in December 2023, ranked No. 1 in the ASM tool market share (FY2022 results)

[Click here for details on Macnica ASM]
https://www.macnica.co.jp/business/security/manufacturers/mpressioncss/asm.html

[For product inquiries, please contact here]
Macnica
TEL: 045-476-2010
E-mail: sec-service@macnica.co.jp

*Company names and product names mentioned in this text are trademarks or registered trademarks of Macnica and each company.
*The information published in the news release (including product price, specifications, etc.) is current as of the date of announcement. Please note that the information may be subject to change without prior notice.