A large North American city government partnered with ReversingLabs to streamline and accelerate its file analysis and triage process.
They chose ReversingLabs’ Advanced Malware Analysis Suite for its unmatched speed and efficacy, while providing the private analysis capabilities they required.
The organization needed to reduce the risk of malicious files entering the network, especially from email attachments associated with public mailboxes. And, they needed to do this without causing workflow bottlenecks or delays that could result in a detrimental impact on the public. In short, they needed a quick and reliable answer to the question “Is this file safe?”.
With ReversingLabs, the SOC team can get that answer in real-time, backed by verified threat verdicts, so they can make fast, informed decisions.
When deeper-dive investigations are necessary, the detailed malware analysis reports generated by ReversingLabs provide the security team with valuable context and clear, easy-to-understand output for their internal incident response and threat intelligence efforts.
Moreover, this actionable malware intelligence was easily integrated into the organization’s existing technology, enabling powerful automated workflows.
Optimizing and enriching their existing TIP was of key importance, especially when it comes to ransomware. ReversingLabs delivered on this requirement with a highly curated ransomware TAXII feed.
Strict vetting from ReversingLabs’ in-house research team provides extremely valuable ransomware threat intelligence that includes aggressive aging of indicators and active filtering of obsolete threats, ensuring only relevant indicators are active in the list.
As a government agency with highly sensitive information at stake, privacy was one of the key requirements. This was another reason they chose ReversingLabs’ Advanced Malware Analysis Suite, which provides private file analysis by default and a private datastore, so sensitive and confidential data stays out of the public domain.