Attack detection for more cyber security in medium-sized companies

Attack detection for more cyber security in medium-sized companies

Share post

The German Cyber ​​Security Organization (DCSO) is now providing an expanded range of cyber security services as a managed service. Medium-sized companies in particular thus receive protection for their IT infrastructure from a single source around the clock.

More and more small and medium-sized companies are currently being targeted by IT attacks. Because compared to large companies, they often have less sophisticated security systems and cyber know-how and therefore offer an easier target for ransomware & Co. In addition, their IT and security teams are usually not on duty around the clock.


SMBs are more vulnerable to attacks

Not least due to remote work, the massive increase in IoT devices in the course of digitization and the increased use of cloud resources, you need comprehensive visibility across all domains of your infrastructure in order to react quickly to attacks at any time. DCSO now offers this comprehensive attack detection with an expanded range of Managed Security Services, which consists of the combination of Threat Detection & Hunting (TDH) for networks and endpoints.

TDH for Network is a solution that has proven itself especially for detecting advanced threats (APT, Advanced Persistent Threat) in the enterprise segment. However, new attack methods such as ransomware and more complex IT landscapes today require an expansion of network sensors for optimal protection of the entire IT architecture - including all end points, even in medium-sized companies.

Threat Detection & Hunting (TDH) Complete

On their own, individual alerts from the network or endpoints may be considered unimportant. However, if these are linked to one another, complex attack patterns can also be identified. The combined solution TDH Complete now presented correlates network and endpoint data as well as additional context information for maximum transparency and effective risk prevention.

"Only the interaction of different data sources allows the best possible detection of modern attacks," explains Stefan Steinberg, Director Cyber ​​Defense Business & Communities. “Companies have to keep an eye on this data at all times, since attacks also tend to take place at night or at the weekend. With our expanded services, we offer small and medium-sized companies all-round protection as a managed service so that those responsible can sleep peacefully again.”

The big picture in view

The complete solution from DCSO offers significant advantages: Instead of individual point solutions that cannot always be integrated, companies receive all protective measures from a single source and around the clock as a service. This relieves the internal IT teams significantly and at the same time increases the level of protection. Instead of individual alerts, they receive a comprehensive overview of the threat situation. In addition, the attack indicators are maintained and updated by the DCSO so that they are always up to date. And with the help of so-called retro-matching, an attack can also be identified retrospectively, even if there were no indicators at the time of the attack.

As a medium-sized German company, DCSO knows the special importance of data protection and transparency: The service architecture therefore stores data in the customer's own infrastructure and only transmits alarm-relevant information to DCSO. In addition, essential components were developed on the basis of open source. The sensors installed in the customer's networks can be viewed openly and their data transfer remains transparent.

From the German economy for the German economy

As a German service provider, the DCSO focuses on the security situation in Germany. To this end, the company analyzes geopolitical developments and their effects on German cyberspace in order to classify threats to the economy. On the basis of this global perspective, DCSO offers security services that also specifically benefit medium-sized companies in order to strengthen them within their supply and value chain. The DCSO works closely with state institutions such as the BSI. Customers also use the knowledge of other companies via the knowledge exchange of the DCSO community. The DCSO offers cyber security from the German economy for the German economy.

More at


About the DCSO German Cyber ​​Security Organization

Founded in 2015, DCSO Deutsche Cyber-Sicherheitsorganisation GmbH offers the German economy a protected and manufacturer-neutral space for cooperation on all cyber security issues and develops state-of-the-art services for effective and efficient cyber defense.


Matching articles on the topic

E-mail communication: end-to-end encrypted

E-mails are considered to be one of the most important forms of communication in the business environment. But only every second company uses end-to-end encryption methods such as PGP or ➡ Read more

Mobile Security Report: 2 new malware apps every minute 

Android smartphone owners are at high cyber risk. Mobile Security: Although the attacks are fewer, they are much better executed. ➡ Read more

Ransomware: HardBit 2.0 asks for cyber insurance

The HardBit 2.0 ransomware group asks the company for cyber insurance information after a successful attack. That's how the group wants theirs ➡ Read more

Cyber ​​attacks: automotive industry badly affected

A new study shows that the automotive industry and suppliers are particularly often affected by cyber incidents. Trend Micro has investigated the cyber attacks ➡ Read more

Mobile working worsens the cyber security situation

Lack of security awareness when working from home: In a survey* by SoSafe, 9 out of 10 respondents said the cybersecurity situation is getting worse ➡ Read more

2022: DDoS attacks increased and continue to increase 

Analysis of 2022 data shows malicious DDoS attacks increased by 150%.Radware released its 2022 Global Threat Analysis Report ➡ Read more

Protection solution for KRITIS against cyber attacks

The PREVENT/OT solution recognizes possible attack routes to impair the operation of critical infrastructures - KRITIS. Their novel approach uses AI to ➡ Read more

Ransomware Report: LockBit Still Leads

It's not good news from the February Malwarebytes ransomware report: LockBit is back at #1. As in 2022 leads ➡ Read more