Announcement of the launch of the web tampering detection service "GRED Web Tampering Check Cloud"

2017.02.01

X facebook Hatena Bookmark pocket

Web tamper check Cloud GRED


In response to requests from many customers,
Beyond Co., Ltd. has begun offering SecureBrain Corporation 's web tampering detection service
, "GRED Web Tampering Check Cloud."


We believe that this will further strengthen the services and solutions provided by Beyond


We look forward to your continued patronage so that we can respond to the requests of many customers

About GRED Web Tampering Check Cloud

"GRED Web Tampering Check Cloud" periodically checks for unauthorized tampering on websites, and
if it detects unauthorized tampering, it will send an alert email to the administrator and provide a detailed report.

Detects web tampering with three detection engines

"Script change detection engine"
- Analyzes and detects JavaScript changes using a unique algorithm.

"Link tag change detection engine"
- Detects changes in the src and href attributes of specific tags within HTML.

"Surface analysis engine"
- Issues an alert if an executable file on a monitored page behaves in a manner similar to malware.

Responding to various web tampering attacks

・Web defacement by cyber attacks, etc.
・Web defacement that exploits vulnerabilities
・Web defacement that automatically downloads viruses, etc.
・Web defacement that intentionally rewrites pages to demonstrate political will or ideology
・Web defacement to use as a springboard for drive-by download attacks ・
Web defacement using Gumblar or the Darkleech Apache Module, etc.

If web tampering is discovered

If a registered URL is tampered with,
the green "SAFE" mark on the top page of the management console will change to a red "Tampering Detected" mark, and
a notification of the tampering will be sent to the email address registered for alerts.

For more details, click the URL in the email or
the red "X" icon on the calendar on the top page. A
detailed analysis report will immediately identify problem areas, allowing you to take prompt action.

Highlighting of source code where tampering has been detected

Clicking "View Details" in the detailed report
will display the source code of the page where tampering was detected, highlighting the problem areas.
By quickly identifying problem areas, you can respond more quickly.

Detailed report when link tag/JavaScript changes are detected


It is equipped
with a "script change detection engine" that detects tampering by looking at changes in JavaScript, and a
that detects changes in the src attribute and href attribute of specific tags within HTML. an email will be sent with the subject "Changes in web content data detected" and you can check the details in the management console.

Cross-domain script management and warning function


allows you to collectively monitor and manage cross-domain scripts
contained in all monitored websites When unintentional "cross-domain scripts" are embedded,
a warning is sent, allowing you to take prompt action.

GRED Web tamper check sticker

Those who use this service will be provided with a "GRED Web Tampering Check Seal."
By displaying this seal on your company's website,
you can display the verification results that your website is protected by the Web Tampering Check.
By placing the "GRED Web Tampering Check Seal" on your webpage, you can appeal to your customers and web viewers that your website is constantly monitored and
safe, providing peace of mind to your website visitors and customers.

Inquiry

GRED Web Tampering Check
If you are a company that would like us to handle everything from Cloud implementation and configuration to operation, contact Beyond 

Inquiries/Request for materials
[7th] Beyond Study Group will be held! The world's first Minecraft(R) x programming education x free learning mod beta version has been released (Hack Inc.)