Solutions

Incident Response:

Direct link to this page:

When something happens, Hanco is Here!

Our Hanco CyberShield™ Incident Response will allow you to remotely manage your environment and respond to attacks right from your own dashboard.

Incident Response

Incident response is an organized approach to addressing and managing the aftermath of a security breach or cyberattack, also known as an IT incident, computer incident or security incident. The goal is to handle the situation in a way that limits damage and reduces recovery time and costs.

We will handle any data breach or cyberattack that may affect you, including the way your organisation attempts to manage the consequences of the attack or breach.

Respond to incidents right form your own dashboard. We support several incident response actions such as isolate the host, kill the processes, logoff and block users or IPs and much more.

Simple and powerful

You see an alert and confirm that a server has been compromised. You or the SOC team decide to isolate the host from the network and lock down the computer for forensic analysis. Time is key and this should be accomplished ASAP before the Cryptoware spreads through the network.

Our incident response can be accomplished in a matter of seconds. Just navigate to Incident response and select “Lockdown server” on the commands list.

Extended Research and Analysis

Alerts may often require additional research and analysis. Switching windows and tabs to log into a server or opening an SSH console to explore or change configurations might be time-consuming. Our incident response capabilities have been extended to provide an Interactive-console like interface. Control any host from your custom dashboard and make those changes in seconds.