Contradicting conventional wisdom that only 'non-technical' individuals fall prey to a phishing attack, technologist Andrew Betts of FT Labs inadvertently provided his credentials to the attackers. He was one of several employees who did so.
This provided attackers with access credentials and enabled them to take over email accounts at the Financial Times. The Syrian Electronic Army was identified as the attacker and they apparently targeted the newspaper/media company due to their representation of the Assad government.
This case study provides a fascinating eye witness account of what it's like to experience a targeted cyber attack and highlights an important aspect that companies should consider in their security planning, namely, whether they may be targeted in a similar manner by protest groups due to their intended business strategy, who those attackers may be and what strategies they should deploy to limit the threat and the damage.
Want to discuss this case? You can purchase a 30 minute conference call with our analysts to discuss this case and the implications it has for your organisation. Just select the time and date that works for you: