We manage not only to put the fire out, but effectively prevent it as well
One of the big czech e-shops got several serious complaints from the Office for Personal Data Protection in relation to data security. The theft and abuse of customers' emails occurred after receiving spam messages. The company addressed AEC for help with solving this problem.
The preliminary technical analysis discovered a number of discomforting findings. After agreeing with the customer, we deployed a monitoring probe into the network that revealed the compromised server operated by attackers from eastern Asia within two days. We reacted immediately to the detected situation and we stopped further abuse of the client’s infrastructure.
This situation showed that the customer was not ready to solve these risks effectively. So we elaborated a complex risk analysis and, on its basis, we proposed a actual security measure and processes that will prevent similar situations from repeating themselves in the future. We drew up a security project and helped to put it into practice. The E-shop not only passed the subsequent check performed by the Office for Personal Data Protection, but also significantly improved the overall level of its security.