Advanced persistent threat that began with phishing email


In March 2011, the company disclosed that two separate hacker groups had worked in collaboration with a foreign government to launch a series of phishing attacks against employees, posing as people the employees trusted, to penetrate the company's network.

The impact of the cyberattack that stole information on the SecurID authentication tokens as described by the CEO “I felt like a cannonball had been shot through my stomach”.

The company claimed that no customers' networks were breached but security professionals have been skeptical on this. Their parent company reported that it spent at least $66 million remediating the event.

One of the many lessons learned from this event are that even security companies are not immune to being hacked.

Book a consultation

Want to discuss this case? You can purchase a 30 minute conference call with our analysts to discuss this case and the implications it has for your organisation. Just select the time and date that works for you:


  • EMC Corporation
  • RSA Security LLC

We've done the analysis so you can make the decisions

When purchasing a minimum of 5 Case Studies
$699.99 if buying less than 5.

  • Detailed cause & effect analysis
  • Lessons learnt catalogued
  • Preventive controls extracted
Add to Cart
Heads up! Want to try before you buy? You can download our FREE demo case study here