STORIES FROM THE CYBERSECURITY TRENCHES: Proactive Threat Discovery Identifies an Advanced Threat Actor in the Environment

Mark Lance, VP, DFIR & Threat Intelligence with GuidePoint Security, was brought in to conduct a proactive threat discovery engagement for a manufacturing company. The business wasn’t necessarily aware of anything specific going on in their environment, but wanted him to validate whether there was more brewing that was potentially going unidentified or unseen.

When Lance quickly identified that there was in fact an advanced actor working within the customer’s environment, he was stunned that they had been present for over two years. They had such an in-depth familiarity with their network, that was incredibly concerning to Lance.

While on the hunt to reveal more intel, Lance was able to figure out how the threat actors got in and what systems they had access to.

Watch the video to find out what happens next.