Netsurion logo Netsurion logo
  • Our Solution
    Back
     Image
    OUR SOLUTION
    • Capabilities
      Predict, prevent, detect, and respond
    • How It Works
      People, platform, and process
    • Use Cases
      By threat, environment, or industry
    • Talk to a Cybersecurity Advisor
      See how we deliver managed threat protection
  • WHY NETSURION
    Back
     Image
    WHY NETSURION
    • Key Business Benefits
      Powerful yet practical cybersecurity
    • Industry Leadership
      Perennial recognition for innovation
    • Customer Success
      Driven to be your trusted partner
  • Partners
    Back
    Partner Program Overview Image
    PARTNER PROGRAM OVERVIEW
    • Partner Program Benefits
      Our solutions are built for service providers
    • Become a Partner
      Grow your cybersecurity practice
  • Insights
    Back
     Image
    VIEW ALL INSIGHTS
    • Articles
      Read the latest from our blog
    • SOC Catch of the Day
      Real stories of threats we reel in daily
    • Cybersecurity Q&A Videos
      Answering your toughest cybersecurity queries
    • Webcasts & Events
      Join us in-person or online to learn more
  • Company
    Back
     Image
    MEET NETSURION
    • Leadership
      Meet our management team
    • News
      Press releases and news stories
    • Careers
      Check out our current openings
    • Contact Us
      Talks to sales or support
  • MyNetsurion
  • Support
  • Partner Portal
  • Contact Us
SOC Catch of the Day

We review billions of logs daily to keep you safe from advanced threats.

HomeInsights Catch of the Day Phony Performance Warning Foiled

Phony Performance Warning Foiled

The Network:  Our customer is a well-known law firm with more than 350 lawyers practicing across the globe who counsel multinational corporations, privately held and family-owned businesses, individual and institutional investors, educational and research institutions, and other clients in a broad range of legal disciplines.

The Expectation: The primary user is not an IT professional and therefore must be kept safe against malware that is prevalent today. Endpoints are carefully maintained with patching and a brand name anti-virus program. However, end users may make poor decisions, and cyber attackers will exploit every possible vector, so monitoring is needed.  Netsurion's Managed Threat Protection enables the global law firm to protect sensitive client data from insider threats as well as external hackers.

The Catch: Netsurion’s SOC (Security Operations Center) team observed an undesirable process executing on the customer’s workstation. It was permitted to do so by the brand name anti-virus software. The executable was digitally signed with a certificate from Symantec.

The Find: The undesirable program masquerades as Advanced PC Care and displays misleading information about the computer's performance. It then asks the end user to pay to fix the issues.

The Fix: Netsurion’s SOC promptly alerted the administrator to uninstall this program and properly scan the target. The program was bundled with a malicious YouTube installer that the end user had not noticed.

The Lesson: User training is critical, but the best of us can succumb given the sheer volume of malware that we face every day. Administrations must trust but verify user actions. Your security analysts will be proactively notified by Netsurion’s SOC when high-risk incidents occur, so that appropriate action occurs quickly to minimize dwell time.

Related Catches
  • Dubious Document Destroyed at Law Firm
  • Vulnerable VoIP
  • Man-in-the-middle Disrupted at Multinational
Latest Catches
  • MFT Server Exploit Intercepted in Mid-Air
  • Trojan Hunted at a Medical Center
  • Ransomware Detected & Blocked in Business Services Firm

This site uses cookies to store information on your computer. Some are essential to make our site work; others help us improve the user experience. By using the site, you consent to the placement of these cookies. Read our Privacy Statement to learn more.

I Accept

Contact Us

  • 1 (877) 333-1433
  • Customer Support
  • partners@netsurion.com
  • sales@netsurion.com

Partners

  • Partner Program Overview
  • Partner Program Benefits
  • Become a Partner
  • Partner Portal Login

Quick Links

  • Why Netsurion
  • Blog
  • Careers
  • Our Solution
SOC 2
  • Terms of Use
  • |
  • Privacy Notice
  • |
  • Soc 2 Type 2 Compliant
  • |
  • Contact Us
  • |
  • Sitemap
  • |

Copyright © 2023 Netsurion. All rights reserved.