Exterro improves digital forensics and incident response
PORTLAND, Ore., May 04, 2022 (GLOBE NEWSWIRE) — Exterro Inc. – the preferred provider of Legal GRC software specifically designed for in-house legal, privacy and IT teams at Global 2000 and Am Law 200 organizations – announced today the release of its improved FTK® Connect the digital forensics tool that adds powerful new automation, orchestration, and integration capabilities to Exterro’s industry-leading platform.
FTK Connect automation enables enterprises to streamline their incident response or breach investigation, and enables law enforcement and public sector customers to expedite the processing and review of forensic evidence in criminal cases. Launch demonstrates Exterro’s continued investment in FTK® product line as it anticipates a future IPO and underscores the company’s commitment to the digital forensics and incident response market.
In 2021, businesses suffered 50% more cyberattacks per week than the previous year and businesses around the world expect an increase in attempted breaches. But if their forensic tools aren’t directly integrated with their cyber-intrusion tools, they may not be able to preserve the evidence needed to remediate the attack. FTK Connect supports incident response requirements by combining new automation capabilities with the power and speed of Exterro’s FTK solutions to perform forensic investigations, incident response workflows and secure company assets. Additionally, it enables SIEM and SOAR platforms like Splunk and Palo Alto Networks to be automatically integrated with FTK forensic products to instantly preserve evidence upon detection of an intrusion, with no human interaction required. It also has a significantly simplified drag-and-drop user interface (UI) specifically designed to allow non-programmers to easily create automations for any type of case.
For public sector agencies, FTK Connect provides a must-have automation solution that overcomes many of the challenges they face today. Some of these challenges include case backlogs that exist due to dwindling technical budgets, lack of investigator training, and huge amounts of data that must be processed. Essentially, the costs of equipping a forensic laboratory with state-of-the-art technology with highly trained examiners are out of reach for most agencies. Thus, forensic evidence reviews are delayed after a reader’s imaging or evidence collection, as they depend on the availability of trained examiners to perform subsequent steps. Because of these circumstances and for budgetary reasons, agencies are more frequently using non-technical examiners who have no background in forensics or forensic software, but who must prepare cases for review by a forensic expert. legal. As a result, investigation closure rates continue to lag far behind.
“Using FTK Connect automation, law enforcement agencies can perform forensic workflows much faster and better utilize their existing hardware and software investments by using them when users are not around. said Harsh Behl, director of product management at Exterro. . “The after-hours automation schedule utilizes the 16 hours of the day between when an interviewer leaves work and when they arrive the next morning that were previously wasted. Law enforcement agencies using FTK® Lab or FTK® Central with FTK Connect will be able to close more cases in less time.
FTK Connect enhancements are the result of Exterro’s close partnerships with major customers in the US, UK and Europe. The wealth of experience and market knowledge from these customers has helped Exterro create a tool that creates efficiencies and closes key gaps that exist in other forensic solutions.
New Features and Functionality of FTK Connect:
- Create automations with unprecedented ease
Designed for non-programmers, the intuitive interface allows users to easily create automations for any type of case with a drag-and-drop interface. Be instantly productive with minimal training.
- Automated processing and review
Law enforcement agencies can configure FTK Connect to monitor directories and automatically process any forensic image placed there, then automatically search cases for pre-configured search terms, apply tags or bookmarks and export the resulting files.
- Unite SIEM and SOAR with forensic investigations
Orchestrate the forensic collection workflow by integrating internal cyberinfrastructure tools together. Instantly preserve electronic evidence upon detection of an intrusion. FTK Connect can automate collection from remote endpoints based on triggers from solutions such as Splunk SOAR and Palo Alto SOAR.
- Custom Workflows
Leverage FTK Connect APIs to create custom workflows or integrations that match the exact needs and specifications of the organization.
- ISO accreditation
FTK Connect automation helps minimize human interaction when processing digital evidence, reducing the risk of errors and ensuring compliance/adherence to ISO accreditation standards such as ISO 27037 or ISO 17020 and 17025.
FTK Connect seamlessly integrates with FTK® Laboratory, FTK® Company and FTK® Central brings unparalleled speed, power, and security to forensic workflows.
Exterro enables legal teams to proactively and defensibly manage their legal governance, risk and compliance (Legal GRC) requirements. Our Legal GRC software is the only comprehensive platform that automates the complex interconnections of privacy, legal operations, digital investigations, cybersecurity response, compliance and information governance. Thousands of legal teams around the world in corporations, law firms, governments, and law enforcement agencies trust our integrated Legal GRC platform to manage their risk and achieve successful results at lower cost. For more information, visit exterro.com.