IR-1 is designed for small businesses who are cyber security vigilant, but faced with limited resources and knowledge on how to manage a cyber incident. Contact us if you are operating a small business in the Asia Pacific region with less than USD 50 million in annual revenue.

Log on to (platform web address) immediately to report a cyber incident by activating the IR-1 service. Upon receiving the notification, a dedicated incident response manager will be in touch within the following 4 hours to walk-through the best course of action as needed.

The IR-1 credit is considered redeemed upon utilization of your activation key, during the subscription period. It will grant you access to our incident response specialists, digital forensics and security professionals, as well as unlimited e-resources on our online platform at no additional cost (applicable to qualified cyber incidents only). Your IR-1 credit includes root cause/scope of breach investigation and incident resolution. The credit does not include restoration of business activities and implementation of extended remediating actions.

A cyber incident is defined as such if it includes Basic Web Application Attacks, Denial of Service, System Intrusion, Business Email Compromise, Malware or Ransomware. In addition, a qualified cyber incident must satisfy the following two criteria. Firstly, the compromise date must be later than the registration/renewal of the IR-1 subscription. Secondly, the root cause/cause of incident must be different from any previous incident for which IR-1 has been activated, unless Blackpanda-approved mitigation measures have been implemented.

Your IR-1 credit will be considered redeemed upon requesting our incident response services. You may, however, opt to continue digital forensics and incident response services at a preferred rate of USD 350/hr (U.P USD 400/hr).

In addition to unlimited access to cyber risk e-resources platform, you can still enjoy all Blackpanda services including incident response and digital forensic services at a preferred rate.

Yes, your IR-1 credit will be considered redeemed. When we receive your Incident Response activation request, our multi-disciplinary regional responders are activated and will start to investigate the suspected incident immediately. As such, regardless of whether the investigation reveals the incident is legitimate or is a false positive, your IR-1 credit will be considered redeemed

This is highly recommended. However, it is not mandatory, as EDR/endpoint agents collect historical forensic data that allows our specialists to conclude the preliminary investigation within a shorter time frame. Contact Blackpanda for more information on EDR/Endpoint Installation.

You can always renew your IR-1 subscription as long as you meet the qualifying requirements.

Consider incorporating regular compromise assessments to eradicate vulnerabilities in your systems and conducting tabletop exercises to review the readiness of your team.