IT Security

If your business has an Internet presence then security is something that you cannot afford to ignore. Hacking incidents and computer crimes are a large problem with potentially very serious consequences for modern businesses. New vulnerabilities in common network services are discovered weekly and can be used to deface your company's web site, crash your servers or even steal your commercial secrets. The scale of this problem is enormous and getting worse every year. The Computer Emergency Response Team (CERT) gathers statistics on successful and attempted computer intrusions. As you can see from their E-Crime Watch Survey 70% of respondents reported being the victim of at least one electronic crime in 2003.

Our Security Services

Kaleton Internet provides a wide range of security services designed to meet the needs of every type of business. Please feel free to contact us with any questions about any of our security services.

Click on the links below for further information and to view more of our services.

Papers and Articles

Electronic surveillance

Investigations

Remote Server Audits and Penetration Tests

We specialise in carrying out remote vulnerability audits of small companies' UNIX and NT servers to find the security holes before the bad guys do. By going through the same processes that computer intruders do when attacking networks from the Internet we can thoroughly evaluate the online security of your business's servers. This process is known as 'ethical hacking'.

Some companies and self-proclaimed 'security experts' who offer penetration testing services will simply use an off the shelf vulnerability scanner to probe your server, give you the report that it generates and then charge you a ridiculous amount of money. We will conduct a thorough check of your servers with a range of specialist tools and provide a concise report detailing the key problems found and simple advice on how to fix them. The emphasis is on providing a useful service that results in a significant improvement in your security.

Please note that we are a small business and so it is not practical for us to audit huge corporate networks. Our services are aimed at businesses with no more than 10 Internet-connected hosts. As such we are also moderately priced to be affordable to the small to medium sized company.

Every penetration test starts with the client answering a few key questions. This is to establish the nature of the information assets that the client is trying to protect, the nature of the threats they are being protected from and also the resources the client has for implementing security. Once this has been discussed the audit proper begins. A range of open source security tools are used to methodically gather information about the client's systems. The exact course of action taken is unique to each client. It may be possible to determine after a few hours that the client actually already has very good security that we cannot improve. Alternatively, we might find evidence of security problems and suggest spending more time continuing the evaluation in more depth. Either way, the final result is a written report detailing what issues were found and how they can be fixed.

All information about your network that is gathered during the penetration test is stored securely and encrypted with PGP. We understand the sensitivity of our work and the responsibility that we have to keep information about our clients private. Once our final report has been received by the client it is securely wiped from our systems and any hard copy documents are shredded.

If you would like to discuss the security auditing process further please contact us (our PGP key is here if needed). You can talk to us about your security needs with no obligation and we can recommend a plan of action for protecting your business.

Data Recovery

Kaleton has experience of recovering deleted data from computer media such as hard disks. We can also recover deleted text messages from Sim cards.

We also have expertise in password cracking suitable for most situations. If you have forgotten the password for your Word documents or other MS Office files, Zip files, Arj files, PGP private key, Instant Messaging programs etc then we can help you. We have a range of specialist software tools and we can dedicate multiple hosts to the task for several days if necessary. The cost of this service is dependent on the resources that we have to use to obtain results. In any case, if we don't manage to crack the password we don't charge you anything. If you require this service please start by emailing us with details of which file format(s) you want us to work with and how many files there are.

Virus Research

Kaleton does research into better understanding software generally known as malware. This includes viruses, worms, trojans and other kinds of damaging software. Recently we have been concentrating on studying bot nets and their use for keystroke monitoring, credit card fraud and DDoS attacks.

As part of our work we maintain a library of viruses and worms including source code wherever possible. Copies of malware are obtained from a wide range of sources and allow us to reverse engineer them and increase our knowledge. For obvious security reasons this library is stored on a computer that is isolated from the Internet and all other computers. We can provide virus and worm source code from this library to those with a legitimate need. Software engineers at research institutions, anti-virus companies etc can request copies of specific malware to help with their work.

Pay with most major credit cards through Paypal, Western Union, cheques, bank transfer

Proud member of the Leeds, York, and North Yorkshire Chamber of Commerce