Translated by

DeviceLock Service on monitoring of vulnerabilities of data storage

The name of the base system (platform): Artificial intelligence (AI, Artificial intelligence, AI)
Developers: DeviceLock (before Smart Line)
Date of the premiere of the system: 2019/05/15
Branches: Information technologies
Technology: Cybersecurity - Information loss preventions,  cybersecurity - Information management and events in a security system (SIEM)

2019: Announcement of service for monitoring of vulnerabilities of data storage

On May 15, 2019 it became known that the DeviceLock company is the Russian producer of the systems of fight against date leaks, announced the next service - "investigation of vulnerabilities of data storage" and also monitoring of fraudulent resources and activities in DarkNet.

Service works at fundamentals of technologies artificial intelligence and performs check external server IT infrastructures and also identification of shortcomings of implementation of storage systems of information. Within regular inspections search of servers with current or archive is carried out data, magazines of information systems and also the analysis of the detected data with the help of mechanisms machine learning on availability in them of sensitive information, including personal data, information with signs of a trade secret and others. Besides, AI performs permanent monitoring of offers on sale of data in groups Telegram, on the different covered areas and forums and also resources in DarkNet.

According to the results of monitoring the report with indication of the revealed open data and vulnerabilities and also the recommendations of specialists of DeviceLock about their elimination forms. Also perhaps operational notification of the owner of the open resources given directly at the time of detection - by e-mail or via messengers.

According to the founder and the technical director of DeviceLock Ashot Oganesyan, the problem of access to databases through vulnerabilities or errors of a configuration, purchases the increasing importance. If earlier such bases were copied and offered for sale, then now hacker groupings began to destroy data and to require the redemption from owners.

In particular, at the beginning of May, 2019 it became known that hackers from the Unistellar grouping destroyed data of several thousand "open" bases MongoDB and demanded the redemption for data recovery, having left the record "hacked by unistellar" and the message "to Restore? Contact". In Russia there are more than 230 servers from MongoDB which were attacked, and all on their world of more than 12.5 thousand. For search of "open" databases the automated scanners and a question already are used costs not in the form of "find and eliminate vulnerability", and in shape "make it before it is found by hackers. And for this purpose it is already necessary to apply machine learning.
Oganesyan Ashot, founder and technical director of DeviceLock