A professional services organisation was faced with a banking trojan which was using malicious code with the aim of stealing credit card data. It emerged that the email address where the threat had originated from was socially engineered to appear in the format of an internal email memo which an employee mistakenly clicked on.  

With our 24/7 monitoring already in place, we isolated the threat immediately, extracting some new Indicators of Compromise (IOC), before reverse engineering the threat. We found another four instances across the client’s network, which were subsequently dealt with. 

Speed is critical  

For the 78% of organisations we surveyed that have directly experienced a cyber-attack, 43% said speed was one of the top 3 factors that influences their cyber security decision-making. 

It’s imperative that threat intelligence libraries are constantly refreshed, and action is taken quickly. With our Modern Workplace Protection service, which uses machine learning to drive anomaly detection, this allows for identification and response to suspicious activity in real time. This reduces the risk of Account Take Over (ATO) which is often a precursor to BEC (business email compromise) scams. 

According to a recent Gartner report, by 2025, lack of talent or human failure will be responsible for over half of significant cyber incidents.  

Our aim is to reduce risk using threat intelligence to pre-empt and disrupt attackers prior to execution. However, we are also prepared to respond, where necessary containing first and investigating immediately to hinder the lateral movement of attackers to keep impact to a minimum. 

We invest the time and effort to understand our customers’ environments. We are also devoted to building trusting relationships, which enables us to rapidly respond to incidents through tactics such as isolating a machine from a network or temporarily disabling a user account.