StaffCop Enterprise 4.6: Enhanced monitoring on Windows and GNU/Linux
12/17/2019

"Atom Security" released a new version of StaffCop - StaffCop Enterprise 4.6.

Online PR News – 17-December-2019 – Russia, Novosibirsk – "Atom Security" released a new version of StaffCop - StaffCop Enterprise 4.6, a software system that monitors employees' activity, information channels and system events on workstations and servers; in order to analyze, block and notify about dangerous and unproductive activity of employees and applications.

The system monitors all the communication channels available on a computer: network, instant messengers, removable drives, printers. With the help of StaffCop you can compile an archive suitable for searching and visualizing of collected data, set up policies on information security with automatic alerts on incidents, get detailed reports on a risk group activity as StaffCop collects all the metadata from screenshots and dialogues and can draw a graph of employees relations, and even block or restrict access to applications, web-resources, USB-drives and Wi-Fi networks.

The improvements made in StaffCop Enterprise 4.6 are meant to increase the ease of usage in the Enterprise segment. Now data can be collected on intermediate servers, incident details can be exported to SIEM systems, data can be exported from the system or imported to it. StaffCop has enlarged the number of intercepted channels, such as Telegram, communication and files sent in a web version of Skype, ICQ and Mail.RU agent. Now communication in MS Exchange and other protected server can be monitored.

For workstations running GNU/Linux the remote control function is now available, as well as monitoring of printed documents. StaffCop is fully compatible with Ubuntu, Red Hat and Arch Linux. It helps to monitor and analyze user activity in X-Windows windowing system, as well as in terminal mode. The new version supports interception of key-strokes on the kernel level to monitor servers as well as interception of keyboard in X-sessions.

Developers received detailed documentation of StaffCop API for integration with various analytical solutions.

"Due to the newly added functions, StaffCop Enterprise increases the ease of work and speed of incident response due to the ability of integration with third-party solutions, for example BI or SIEM systems with the help of the mentioned API. Now the company is focusing on integration with neural networks" - says Dmitry Kandybovich, CEO of "Atom Security". - In the following versions we will continue working on algorithms and tools for timely threat detection, extending the existing functionality and improving usability of StaffCop.