RSA Conference: Code42 Software Launched Forensic File Search

Code42 Software, Inc. announced its Forensic File Search product.

Click to enlarge

By delivering near real-time answers to complicated data security questions, Forensic File Search helps security, IT and compliance professionals reduce the time it takes to investigate, respond to and recover from data security incidents.

The company will showcase the product in its booth during the RSA Conference 2018, which takes place April 16-20 at the Moscone Center in San Francisco, CA.

When security incidents – such as data leaks, malware attacks or phishing scams – strike, teams from security, IT and compliance are under pressure to investigate and respond to them as quickly as possible. By collecting file metadata and events from endpoints and making them searchable via the cloud, the Forensic File Search enables security teams to get answers to challenging questions ins versus days or weeks.

^{Examples of incident-related questions include:}

• Does known malware have, or has it ever had, a foothold in our environment?

• Has a particular crypto-mining agent been installed on our employees’ computers? Who has it now?

• What endpoints have or had copies of our company’s most sensitive files?

• What files did an employee download or delete in the months before resigning?

• What non-sanctioned collaboration applications are present in our environment?

Click to enlarge

“Code42 Forensic File Search is a game changer for security professionals,” said Mark Ruchie, security advisory board member, Code42 and VP and chief information security officer, Entrust Datacard Corp., provider of trusted identity and secure transaction technology solutions. “It quickly and easily drills down into the details of high-risk data movement. Through one holistic view, it offers the context security teams need to respond to a wide range of cyber threats and disruptions.“

“Responding to cyberattacks takes too long, exposing organizations to greater risks and climbing costs,” said Joe Payne, president and CEO, Code42. “By collecting, analyzing and indexing file events, Code42 Forensic File Search helps organizations shrink time-to-response windows. Our new product provides visibility to where data lives and moves across all endpoints ins. In the months ahead, we will extend this same visibility to data held in cloud applications, including Microsoft OneDrive, Google Drive, Box and Slack.”

Security, IT and compliance professionals can use the Forensic File Search to:

• Silently and continuously collect forensic details on endpoint files and file events, such as creating, modifying, moving and deleting, with a single endpoint app;

• Gather current and historical file events and metadata details, including MD5 hashes, date ranges, and file types and paths; and

• Search and investigate file activity across all endpoints in an organization ins via the cloud – even when the endpoints are offline.

With the introduction of the Forensic File Search, the company has advanced its security capabilities for the enterprise. This product builds on the 2017 launch of its File Exfiltration Detection product, which addresses the problem of departing employees who move files to external drives and cloud services.

Read also:
Enhancements of Code42 Data Security and Recovery Solutions
Meeting advanced information technology and security requirements for speed of deployment and response 
2018.01.19 | Press Release