Image by Peter Y. Chuang

DFIR

Digital Forensic & Incident Response

Cyber breaches happen quickly and can ruin a business. 

With a professional digital forensics team on deck, you can rest assured your business is backed with the expertise you need to bounce back from a breach.

White Gradient

Blackpanda uniquely manages post-breach losses by offering retained and on-demand response services from multidisciplinary regional responders, addressing the greatest pain points of a breach.

 

Our proprietary risk analysis and incident response software allows us to respond more quickly and efficiently, with support from our next generation voice stress analysis technology, to both eradicate malware and root out internal human threats.

Blackpanda maintains highly trained teams of cybersecurity and digital forensics experts throughout APAC, with on-site and remote responders, activating more quickly and with the cultural understanding necessary to manage crises.

Specialized responders address clients’ vulnerabilities across physical, social and cyber threat domains to identify the true source of a breach, incorporating proprietary incident response software and next-gen voice stress analysis tools to detect and combat insider threat.

Our team consists of an elite cadre of special risk and security experts from international special forces, intelligence, forensics and federal law enforcement backgrounds. Operational excellence is at the core of everything we are and do.

DFIR

Process Overview

The Blackpanda DFIR team is comprised of a skilled set of practitioners who are highly experienced and well-trained in crisis management. The team follows procedures developed by Blackpanda, based on a combination of industry best practice (SANS, NIST, ISO) and the requirements of our specific tools and capabilities.

PREPARE

Upon suspicion of incident, client shall:
 

  • Contact Blackpanda 24/7 notification center

  • Submit to Blackpanda the incident data-ingestion form

  • Continue to monitor incident for developments

IDENTIFY

Blackpanda, will within 4 hours: 
 

  • Respond

  • Determine event validity

  • Deploy Pandarecon®

  • Define scope and assign roles

Within 48 hours:

  • Conduct preliminary analysis

  • Submit initial assessment report

  • Begin containment & remediation

Within 4–24 hours: 
 

  • Begin data collection

  • Communicate plan of action

CONTAIN, ERADICATE & RECOVER

Beyond 48 Hours: 
 

  • Conduct root cause analysis

  • Contain/Quarantine the incident

  • Extended remediation

  • Recover lost data (if possible)

  • Assist in restoring business operations to normal

LESSONS LEARNED

Final Report Covering:
 

  • Cause of breach

  • Methodology used

  • Remediating actions 

  • Recommendations for further improvement of security posture

Abstract Strip Medium.png

Cyber Insurance &

DFIR Services Coverage

Blackpanda DFIR services may also be included as part of a comprehensive cyber insurance policy.


As named responders on a policy, all Blackpanda response fees may be covered, in addition to first- and third-party
losses such as business interruption as well as regulatory fines and fees.

 

Interested in finding a policy that drives both your business and cyber security goals? We can help.

Services

Copyright © 2020 Blackpanda.
All Rights Reserved.

HONG KONG

Room 37, Level 5, Core F

Cyberport 3, 100 Cyberport Rd

Hong Kong

+852 6975 1099

PHILIPPINES

Penthouse, World Plaza Bldg.

5th Ave., Bonifacio Global City

Taguig City 1634

+63 2 8250 6110

JAPAN

301, 2-7-18

Nishiazabu Minato-ku,

Tokyo 106-0031

+81 80 2077 9824

MALAYSIA

D1-U3A-6 Solaris Dutamas

Jalan Dutamas 1

50480 Kuala Lumpur

+60 3 6206 2582

SINGAPORE

3 Church Street, #25-01,

Singapore 049483

+65 6692 9110

  • LinkedIn
  • Facebook
  • Twitter