The Information Systems department of the company ABC has been confronted with several recent cyberattacks which have used e-mail as an entry vector into the IS.
According to studies, 91% of cyberattacks use e-mail as the first vector to infiltrate computer systems.
Additionally, the average cost of a phishing attack is one and a half $1000 per employee, which is a significant cost to the business.
the IT department therefore decided to implement the Estapp 360 solution, which allows users to report suspicious emails and mitigate the risk of attack.
Once reported in a dedicated mailbox, a case is created.
The e-mail is then analysed through E App 360 Partners solutions and automatically through the XOR.
Five steps are carried out simultaneously to analyse the e-mail.
File analysis helps identify malicious behaviour and associated matches in antivirus databases.
The analysis of domain names in particular gives analysts clues as to whether or not the attack was targeted.
URLs are analysed in order to understand the attackers systems and their level of expertise.
IP analysis makes it possible to understand the infrastructures used and to make correlations with the signatures TTP of malicious actors.
The scan results are then consolidated into a PDF which is reviewed by an analyst to determine if the e-mail is potentially malicious or not.
The Sopra Steria analyst validates the East App 360 analysis and enriches the report with recommendations for the remediation and prevention of subsequent attacks.
The detailed report is then sent to the employee and to the IT department to provide them with the turnkey actions.
The implementation of the ESTAPP 360 solution has enabled AB CS ISD to respond effectively to cybersecurity issues related to suspicious emails.
Thanks to this solution, the company was able to limit potential impact of attack and strengthen its overall security while protecting its data sovereignty.