The client for this case is a pioneer for remote staffing and outsourcing. Specialized for quickly
providing skilled staff at affordable rates, they are ideal for businesses who need to scale
effectively and find the traditional hiring process time consuming and expensive. GIven that they
provide staff to work remotely, much of their assets are online, hence why they want to ensure
the best level of cybersecurity.
The client faced an attempt to perform a privileged operation. Our SOC quickly received the request and worked to counter it.
1. The request was received by our SOC
2. Our team isolated possible infected devices
3. They conducted an analysis of the devices
4. Two devices were found to contain the malware
5. They then identified the IP address of the entry point of the malware
6. Anti-virus site entry in the hosts file has been removed.
Our SOC was able to identify what malware was being used and how it entered the client’s
network. Following that, they removed the threat and ensured that the entry point could not be
used again.
Powered by
