Data Breach Remediated and Resilience Enhanced

Sensitive Data About Millions Of Users

As part of its daily operations, the client manages sensitive personal and financial data of millions of users. The client was attacked by a previously unknown threat actor.

Sygnia Eradicates The Attacker

Sygnia was called in to respond to the breach. A Sygnia IR team fully identified the entry point and lateral movement vectors of the attacker. The team blocked the attacker to prevent further data leaks.

Forensic Analysis Revealed Attacker Leveraged AWS Access Key

Prior to Sygnia’s engagement, the scope of the attack was unclear. Despite visibility constraints, the Sygnia team was able to fully identify the extent of the data exfiltration. Our forensic analysis revealed that the attacker compromised a privileged AWS access key to gain access to the client’s environment and was able to exfiltrate a large amount of customer data.  

Resilience Enhancements Implemented To Prevent A Repeat Attack

A comprehensive forensic report was provided to the client and its legal team . Sygnia provided short-term recommendations to prevent a repeat attack, and long-term recommendations to improve the client’s overall cyber resilience. Sygnia worked with the client to implement top-priority recommendations immediately.