The FBI is the lead federal agency for investigating cyber attacks, warning organizations about any potential threats as part of their victim notification program.
Organizations often rely on Mandiant to quickly identify malicious activity and effectively respond.
In this example, a large insurance company activated their Incident Response Retainer after being warned by the FBI about a targeted attack by a known threat actor that deploys ransomware and extorts victims for millions of dollars.
Working directly with the client’s security operations center, the Mandiant team was able to stop the attacker before ransomware was deployed and eradicated the threat until it was confirmed there was no evidence of data theft.
For this engagement, the team effectively performed:
- Host Analysis
- Forensic Analysis
- Network Analysis