下载PDF
Redscan > 实例探究 > 调查针对保险公司的复杂电子邮件业务妥协攻击
Redscan Logo

Investigating a Sophisticated Email Business Compromise Attack on an Insurance Provider

技术
  • 网络安全和隐私 - 身份认证管理
  • 网络安全和隐私 - 入侵检测
适用行业
  • 建筑物
  • 金融与保险
适用功能
  • 质量保证
用例
  • 篡改检测
  • 基于使用的保险
服务
  • 培训
挑战
一家领先的独立保险经纪人成为商业电子邮件泄露 (BEC) 攻击的目标,试图诈骗其一名客户近 30 万英镑。
关于客户
该客户是一家专业公司,为高价值企业并购提供保险建议,处理大量敏感数据。
解决方案
Redscan 是一家领先的威胁检测和响应服务提供商,进行了全面的取证调查,以揭示此次攻击并提供防止未来攻击的建议。
运营影响
  • The firm was able to gain a comprehensive understanding of the extent of the compromise and the methods used by the attackers. This knowledge was invaluable in helping them to safeguard against similar threats in the future. The firm was also able to implement the recommendations provided by Redscan, including the use of Office 365 Secure Score, full mailbox audit logging, enabling multi-factor authentication, proactive network and endpoint monitoring, blocking malicious IPs, and reviewing staff training needs. These measures significantly improved the firm's security posture and reduced the risk of staff falling victim to BEC attacks.

数量效益
  • The attack was detected before any payment was made, preventing a potential loss of nearly £300k.

  • The firm was able to lock down the compromised account and enforce multi-factor authentication for all Office 365 users, effectively preventing subsequent malicious login attempts.

  • The Redscan team identified and disabled email forwarding, safely containing the attack.

相关案例.

联系我们

欢迎与我们交流!

* Required
* Required
* Required
* Invalid email address
提交此表单,即表示您同意 IoT ONE 可以与您联系并分享洞察和营销信息。
不,谢谢,我不想收到来自 IoT ONE 的任何营销电子邮件。
提交

Thank you for your message!
We will contact you soon.