One of the top global Fortune 100 companies, managing a portfolio of global supply chains for a range of industrial and energy products and handling operations and numerous financial logistics worldwide.
In large corporations, financial transactions are often authorized by email. One of the ways that hackers cause damage to organizations is by registering phishing domains and making emails appear as if they are being sent by a legitimate source from within the company. Since these emails often appear very professional and legitimate, hackers can potentially illegitimately request large fund transfers in the name of an authorized signatory, such as the company’s CFO. While internal IT teams may uncover some attempts, the limitations of manual handling may prevent them from catching every potential fake domain.
IntSights discovered the registration of a new phishing domain that was similar to the company’s domain. This timely detection allowed the company to block it, preventing the offender from sending emails from the domain to company employees. A number of days later, an email containing a fake invoice and requesting a transfer of money to an illegitimate bank account was sent to the company, and blocked from reaching its destination.
Prevention of phishing emails. Timely alerting of the company concerning a phishing threat prevented the infiltration of phishing emails into the organization.
Prevention of theft. Theft was thwarted by preventing the transfer of funds to criminal targets.