Case Studies
Deception Technology Derails Ransomware Attack on Regional Healthcare Provider
Overview
Cybersecurity & Privacy - Malware Protection Cybersecurity & Privacy - Network Security Cybersecurity & Privacy - Security Compliance | |
Healthcare & Hospitals | |
Business Operation | |
Intrusion Detection Systems Predictive Maintenance Remote Asset Management | |
Cybersecurity Services System Integration | |
Operational Impact
The Attivo ThreatDefend™ Platform provided information that security devices could not. | |
The Attivo BOTsink solution’s analysis engine provided detailed attack forensics and substantiated, actionable alerts that allowed the customer to secure their enterprise by blocking the C&C IPs and applying group policies to shut down the malware’s method of east-west movement. | |
They also flagged the files hashes of the original and subsequent mutated files in their endpoint solution, preventing a wide-scale ransomware attack. | |
Quantitative Benefit
The security team drastically reduced their incident response time. | |
The healthcare organization saved the ransom they would have needed to pay to recover their critical data. | |