Redscan

The case study revolves around an independent global asset management firm with prestigious corporate investors and banking partners. The firm is responsible for managing assets for a wide range of clients and is acutely aware of its responsibility to protect all related information. The firm had antivirus software and firewalls in place, which provided an essential first line of defense. However, if hackers or malware were to penetrate these barriers, it had no means of monitoring its IT infrastructure to detect unauthorized activity on its network. The firm also needed to ensure that there were no weaknesses in its own network that might be exploited by hackers as a means of infiltrating the networks of its many financial partners. The firm was comfortable that it complied with the IT security standards set out by the Financial Conduct Authority (FCA) in the UK, and other similar regulatory bodies around the world, but it anticipated that these industry requirements would soon become more stringent.

The case study revolves around a global shipping company, one of the largest in the world, with over 135 years of experience in the industry. The company manages around 600 vessels and employs 20,000 people on shore and at sea, through nine ship management centres worldwide. The company was aware of the potential damage cybercrime could inflict on its operations, finances, and reputation, especially after the NotPetya malware attack on Maersk in 2017. The company had some security controls in place, but these did not provide visibility across its complete hybrid cloud infrastructure, including Office 365. They also lacked confidence that attacks would be identified quickly enough to minimise potential damage and disruption. With a relatively small number of IT specialists for its size, the company sought a third party to help with day-to-day threat detection, enable a more proactive approach to cyber security, and mitigate future security risks. They also needed to ensure that appropriate controls and processes were in place to meet all its data protection obligations, including the ability to detect and report breaches in line with the GDPR.

A private healthcare organisation in the UK, which processes large volumes of sensitive patient data, was targeted by a sophisticated type of malware. The malware aimed to harvest employee credentials and exfiltrate data. The organisation was already using Redscan’s Managed Endpoint Detection and Response service to protect its data beyond the level of security offered by traditional perimeter solutions. However, the malware attack posed a significant threat to the organisation's operations and the security of patient details. The challenge was to quickly identify, investigate, and respond to the attack to minimise operational disruption and prevent patient details from being stolen.