Hansen Medical, Inc.
“Hansen has quite a bit of sensitive intellectual property and a distributed network of development labs where our scientists work.
We needed a security solution that would monitor the network activity and alert us if any untoward behaviors were occurring anywhere on the network. We are concerned about attacks from the outside as well as internal threats.
Netswitch has a great integrated solution in Securli® that detects threats before they become breaches and we are very satisfied with the result.”
About Hansen Medical
Hansen Medical, Inc., based in Mountain View, California, is a global leader in Intravascular Robotics, developing products and technology designed to enable the accurate positioning, manipulation and control of catheters and catheter-based technologies. The Company’s Magellan Robotic System, Magellan Robotic Catheters, and related accessories are intended to facilitate navigation to anatomical targets in the peripheral vasculature and subsequently provide a conduit for manual placement of therapeutic devices. The Company’s mission is to enable Cardiac Arrhythmia and Endovascular Procedures and to improve patient outcomes through the use of Intravascular Robotics.
Hansen develops intellectual property in a distributed laboratory environment and are exposed to network enabled external cyber-attacks for the purposes of proprietary design theft. Hansen was concerned that their engineers and scientists were inadvertently exposing sensitive core assets as part of their everyday work activities and needed a way to identify, detect and contain malicious attempts to invade their network and steal the data.
After evaluating various point solutions and networking products, Hansen selected Netswitch’s Securli® Advanced Threat Defense platform as the security backbone to their entire network infrastructure. Their choice was based on Securli®’s integrated best of breed technology stack for intrusion detection and prevention, and post-infection detection supplemented by forensic and remediation services.
In particular, Hansen wanted to know that they were protected against insider threats from their own developers and outsider attacks from competing technology companies in the global medical robotics markets.
The result of our initial scans was the discovery that Hansen’s network was being brute force attacked on a regular basis form foreign locations with which Hansen had no legitimate business or research purpose.
We discovered evidence of risky network behaviors on 5 key devices and outbound connections made from internal HANSEN hosts to known malicious IP addresses, including at least 1 exhibiting behaviors controlled by botnets.
After the implementation of Securli®, we conducted a forensic investigation of these systems, which led to the identification and containment of malicious files on the endpoints in question.
In addition, Securli® was able to identify the absence of suspicious behavior among their engineers and scientists ensuring that Hansen can continue to confidently develop their solutions without worrying that their assets are at risk and with the knowledge that their underlying network infrastructure is protected against system compromise.