Ricoh

A Proactive approach to In-house IT threats, CSIRT activities and Shadow IT / virtual PC

Challenge

Lack of visibility in internal network and early detection of threats

Results

Threat intelligence to detect previously unknown threats
Moved from a reaction approach to a proactive security process
Now has visibility into the use of these cloud services and virtual PCs in their network

Ricoh Co. Ltd. achieves real-time monitoring of 100,000 units to detect threats in advance

Challenge

After experiencing the WannaCry ransomware attack in 2017, the Ricoh Group faced the challenge of rapidly increasing alerts and a lack of visibility in their internal network. The CSIRT team struggled to analyze the logs and understand the attack's impact on their systems, emphasizing the need for improved network visibility and threat detection.

Solution

The Ricoh Group implemented Vectra, an AI-driven threat detection and response platform, after being recommended by security experts from Nissho Electronics. Vectra provided real-time monitoring capabilities, prioritized alerts without rule creation, and enhanced reporting capabilities. The platform helped the CSIRT team capture and analyze data across the enterprise, addressing the challenge of internal network visibility.

Customer benefits

With Vectra deployed, the Ricoh Group gained a proactive approach to detecting early signs of incidents, leading to more effective countermeasures. The platform revealed hidden activities, including Shadow IT and virtual PCs, enabling the company to enforce policies against the use of cloud services for individual contracts. The clarity and efficiency of Vectra's dashboard, along with its AI-driven threat detection, strengthened the overall security posture of the Ricoh Group, making them resilient against current and future cyber threats.

“The ransomware attack was detected on the endpoint, but over time, the number of alerts informing us about the attack increased rapidly.”

Atsushi Sato

CSIRT Team Member at Ricoh

“Detected events are plotted on two axes, certainty and threat level, and when they are detected, their priorities are clear. It works for several analysts.”

Kazuki Ohara

Security Strategy Group and Security Management Department at Ricoh

How other organizations are partnering with Vectra AI

MAIRE

Energy and Utilities

MAIRE Turns the Tables on Unknown Threats

Faced with a surge of unknown attacks, MAIRE’s cybersecurity team needed a reliable method for real-time detection and response.

Read case study

True Digital Group

Telecommunications

True Digital Group uses Vectra AI's Attack Signal Intelligence to prioritize critical threats

Vectra AI-driven Attack Signal Intelligence™ exposes the complete narrative of an attack, providing True Digital Group with a level of signal clarity that helps the SOC team focus on the critical and most urgent threats.

Read case study

Soboba Band of Luiseño Indians

Government

Soboba Band of Luiseño Indians uses Vectra to identify threats for their Government and Casino

Steven Nino, CIO at Soboba Band of Luiseño Indians, shares his experience with the Vectra AI Platform

Read case study

See all customer stories

When you eliminate the noise, you stop attacks faster.

Explore CDR for M365

Vectra Cloud Detection and Response (CDR) for M365 is the most advanced AI-driven attack defense for malicious threats to your Microsoft 365 apps and data.

Learn more

Get a demo

Request a 30-minute demo to see how the Vectra AI empowers SOC analysts to find and stop active cyberattacks in minutes.

Use cases

Explore real-world applications of the Vectra AI platform — from identifying elusive threats to streamlining incident response.

Blogs

The Vectra blog covers a wide range of cybersecurity topics, including exploits, vulnerabilities, malware, insider attacks, threat actors, artificial intelligence, and more.

Customer stories

Vectra AI customer stories showcase how real organizations are using our cybersecurity solutions to protect their data and achieve their security goals.