International Data Breach
Incident Response
A major national insurance provider engaged our incident response team to determine the source and breadth of a significant security breach within their server system. Utilizing a combination of forensic and IT investigative tools, we traced the source of the breach back to the Russian mafia. The mob had infiltrated their system to wire money from the company’s bank to a shell corporation in Nebraska. In addition, our incident response team found that keystroke loggers had infected numerous computers that had to be identified, quarantined, and remediated. During the scope of this engagement, our analysis also uncovered other corporate wrongdoing that was rectified as part of a secondary phase of the engagement.