Response To A Hacktivism Political Protest

Response To A Hacktivism Political Protest

THE SITUATION

After a public threat from a well-known hacktivist group, a prominent political party’s websites were subjected to sustained cyber attacks. The sites were taken down repeatedly with additional concerns of potential database exfiltration.
A phone call to RedShield resulted in an emergency deployment.

 

OUR SOLUTION

All client website traffic redirected to RedShield global nodes for immediate DDoS defense and baseline web exploit threat prevention. RedShield immediately reported presence of blocked exploit traffic. Vulnerability scanning further confirmed some blocked exploit traffic was correlated with detected, known flaws.

RedShield discovered a partial database exfiltration was likely to have occurred prior to shielding and recommended execution of an incident response plan. RedShield instigated an urgent penetration test to detect a broader set of exploitable vulnerabilities. Based on the resulting report, RedShield tuned stateless defenses and introduced new stateful application logic manipulation shields; also known as advanced shields.

The penetration test was rerun with a clean bill of health. RedShield experts continue to monitor the tools and systems 24/7, audit the application defenses weekly, respond to any customer queries and application updates, provide monthly commented security analyst reports

Cybercrime is real, we experienced it first hand and to be frank, weren’t sure what to do. Fortunately for us, RedShield stepped in and sorted it. Having them as my cyber security team takes a lot of my concerns away.

 

THE RESULT

Within 2 hours of contacting RedShield, baseline defenses were in place. Within a further week advanced defenses were deployed. To date, a 0% false positive rate has been reported. The website displays 30% faster through RedShield though ongoing analysis shows attacks are continual. RedShield patented attack correlation algorithms show that at peak attack rates, approximately 1,400 known vulnerabilities breaches were prevented every hour.

February 24, 2020