Angara strengthened cyber security "RGS Bank" from targeted attacks

2021: Increased security against targeted attacks

On March 2, 2021, the Angara group of companies announced an increase in the protection of the Bank's CSG and its customers from targeted attacks and ransomware using Trend Micro products. The IB integrator team has implemented two times ahead of schedule systems to protect email and monitor network traffic, which detect threats that are undetectable by classic IB tools. Reliable and fault-tolerant solutions covered the entire postal infrastructure and part of the bank's network segment.

Targeted attacks are a major information threat to businesses, especially financial sector companies. Unlike other attacks, they target a specific organization, take into account its infrastructure features and weaknesses, as a result of which they have a high percentage of success. A missed attack, such as a ransomware, threatens to leak personal data, encrypt or lose critical information, and can also cause disruption to the organization. Over the past few years, e-mail remains the main channel for the spread of targeted attacks: hackers attack the business through phishing letters containing dangerous links and attachments.

The CSG Bank faced the task of creating an additional level of protection of postal and network traffic from cyber threats, including targeted attacks. CSG Bank was looking for highly intelligent tools to identify threats that are not detectable by classical security tools, as well as a reliable partner-integrator who has the appropriate expertise to implement complex systems. When choosing CSG tools, the Bank focused on the company's products in the field of cyber "Trend Micro - Deep Discovery Email Inspector (DDEI) and Deep Discovery Inspector (DDI). The competition for the project was won by the Angara group of companies, which offered the best conditions and competencies among integrators specializing in information security and working with the developer.

The DDEI system introduced by the Angara team provided an additional layer of corporate email protection against threats that are not detected by classic security tools. The solution acts as an additional forwarding server for incoming e-mail, analyzes and blocks threats through static and dynamic analysis in a virtual environment of potentially dangerous e-mails. The DDI system allowed to achieve a high level of control of both East-West and North-South network traffic. The solution has built-in mechanisms for detecting malicious activities, as well as specific threats that characterize the activity of botnets and targeted attacks.

The Angara team has implemented the installation and configuration of systems under limited conditions caused by coronavirus. All interaction with the customer took place remotely. To quickly solve the problem, our experts pre-configured all the equipment in their office. Further configuration and testing took place through remote access. The high level of expertise of the Angara group of companies and the focus of the project team by the CSG Bank on the result made it possible to implement the project twice ahead of schedule, "comments Dmitry Pudov, Deputy General Director for Technology and Development of the Angara group of companies.

Strengthening the cyber threat against the background of an active transition of financial services to online requires us to regularly increase the IB of our systems, introducing advanced tools in accordance with high professional standards adopted in the Otkritie FC group. Protection against targeted attacks is of crucial importance to us, and we could only entrust the implementation of the project to proven partners. As a result of the work carried out by the CSG, the Bank provided an additional level of security for the financial and digital assets of its customers throughout Russia, "said Oleg Severin, head of the Information Security Directorate of the CSG Bank.

The number of hacker attacks on the business is growing, and the tools of attackers are also being improved. The problem of cybersecurity is exacerbated by the intensive digitalization of business processes, while hackers seek access to confidential information, technologies and finances of companies, "says Mikhail Kondrashin, technical director of Trend Micro in the Russian Federation and the CIS countries. - To detect threats that cannot be detected by classic IB tools, we have developed specialized tools that do not leave intruders a chance to penetrate the network unnoticed. We are pleased that such a demanding customer as CSG Bank chose Trend Micro products to protect email and network traffic from targeted attacks.