An email Phishing attack resulted in unauthorized access to the victim’s email mailbox and the creation of public-sharing links to private Microsoft OneDrive files.
In early 2019, an AIS Managed SIEM Alert indicated that a Customer email mailbox was accessed from the United States and from Russia less than an hour later, triggering an Impossible Travel Alert. Minutes later, an additional Alert was triggered by the creation and use of Anonymous Links to that Customer’s Microsoft OneDrive files.
- On Monday October 28, 2019, a local School District was hit with a ransomware attack, identified as a strand of “Ryuk”. AIS was contacted and addressed the situation quickly and efficiently, reaching out to the client to establish a timeline of events, identify impacted systems, and figuring out a general overview of the server environment. A plan of action was developed, which included:
Establishing a detailed recovery plan, along with potential temporary triage to get your environment up and running as well as possible in the interimCreating a plan to prevent similar future incidentsContacting the cyber-security insurance firm and receiving guidance from them on how to proceedContacting law enforcement agencies about this situation, either directly or as advised by the insurance company.
- Warrenville-Case-Study.pdf 884.65 KB
Sections on this page Related Solutions (11) Related Solutions AIS Managed NMS Network Monitoring System that tracks performance, reliability, and configuration metrics for on-premise and cloud devices and applications. Included tools for Central Administration, Remote Management, Network Typology Insights, In-Depth Monitoring, and Faster Troubleshooting and Root Cause Analysis.
AIS Managed SIEM Cloud-based Security Information and Event Management platform that provides the proactive, preventative maintenance and technology you need to secure your workstations, servers, devices and networks.
- Eisenhower-Case-Study.pdf 1.24 MB
Sections on this page Related Solutions (15) Related Solutions AIS Managed BDR Continuity AIS BDR Continuity provides disk-to-disk backup with available cloud backup options and the ability to run virtual servers from the local BDR appliance or the cloud.
AIS Managed NMS Network Monitoring System that tracks performance, reliability, and configuration metrics for on-premise and cloud devices and applications. Included tools for Central Administration, Remote Management, Network Typology Insights, In-Depth Monitoring, and Faster Troubleshooting and Root Cause Analysis.
Last modified June 4, 2021