A data leak threatens information security and business operations
A CIO of a major international manufacturing company called, deeply concerned about a data leak. The client suspected insider malfeasance at one of its test laboratories. The leak raised concerns about the security of its IT systems, telephone conversations and information and the client was anxious to protect its data. In addition to security, there was a perceived threat to operational continuity and the client needed to give frequent updates to the CEO, so required information and direction quickly.
Control Risks' approach
We started researching the source and reach of the data leak by mapping social media and web forums where the product leak was residing. Crucially for the client, our experts produced evidence for a forensic investigation. They worked with the client’s IT, legal and compliance teams to identify the users who were suspected of the product leaks. The data from the client’s laptops, workstation computers and mobile devices were forensically acquired and analysed for internet and communication evidence to support the findings from the cyber research.
We presented evidence which showed who was behind the data leak and their motivation. The client understandably found the experience extremely stressful and was keen to put all possible measures in place to prevent a similar incident occurring again. Our experts provided a strategy for intelligence-led investigations in the future, including security awareness training, and response readiness training. We also conducted a cyber security review around protecting company assets, focussing on human and technical vulnerabilities.