Customer Case Study:
Customer Profile
The Customer is one of the largest mobile network operators in the USA. They offer a comprehensive range of wireless and wireline communications services to consumers, businesses, and government users.
- Industry: Telecommunications
- Employees: 10000+
- Products: FireCompass RECON
Business Challenge
Challenge 1: Identifying entire exposed digital assets
The Customer’s IT Security Team wanted to identify their entire exposed digital infrastructure. Gathering an accurate, complete inventory (Domains, Sub-domains, IPs, Mobile Apps, Landing Pages, Portals, Forms and so on) would be a daunting task, given the number of unknown digital assets created in a decentralized manner and the Security/IT group’s lack of visibility.
Challenge 2: Lack of resources to research the volume of Security Risk findings
The customer needed a tool which can identify all of their exposed IT attack surface and the related security risks involved. Customer needed a single dashboard to manage their internet exposed assets.Solution
Attack Surface Discovery
- Domains, Subdomains, IPs and Applications Enumeration
- Pre-production systems, UAT Systems, Online DataBases Identification and Reporting
Attack Surface Monitoring
- Vulnerabilities Monitoring (via Passive Scanning)
- Malicious Infrastructure Monitoring (including from Threat Intel Sources)
- Open Cloud Buckets(S3) Identification and Monitoring
- Code Leaks Identification and Monitoring
- Phishing or Look-alike Domains Monitoring
Results
Attack Surface Reduction
Exposed domains have provided a treasure trove of domains that needed to be shut-down as they were no longer being used. FireCompass RECON tool has exceeded the customer’s expectations in identifying numerous domains and subdomains that were shown as public, but should have been private.
Continuously Updated Asset Inventory
FireCompass internet wide continuous monitoring tool has helped the customer to have an up to date inventory of their digital internet facing assets which were missing earlier. FireCompass tool helped them to identify relationships with 3rd party hosting companies that were unknown to the customer’s domain management team. Firecompass also helped to identify key security risk items, as well as domains and subdomains that are legitimate but unknown to the IT team and needed to be added to their inventory.
Discovery and Mitigation of Unknown Shadow IT Risks
FireCompass helped the Customer track the exposed digital assets including:
- Exposed documents & files
- Compromised / malicious infrastructure
- Exposed pre-production servers, database servers, RDP Servers
Near Real-time Monitoring of Digital Risks
FireCompass helped them to monitor their attack surface on a weekly basis, reducing the chances of missing new risks, and notified the critical risks like code leaks in Github, online systems with vulnerabilities, leaked credentials and so on.
"To our surprise, the tool has exceeded our expectations in identifying numerous domains and subdomains that are shown as public, but should be private ..."
Get A Hacker's View Of Your Attack Surface
See your organization’s attack surface from a hacker’s viewpoint (Unsanctioned Cloud Assets, Digital Footprint, Phishing Risks, Misconfigured Infrastructure & more.)
About FireCompass
FireCompass is a SaaS platform for Continuous Automated Red Teaming (CART) and Attack Surface Management (ASM). FireCompass continuously indexes and monitors the deep, dark and surface webs using nation-state grade reconnaissance techniques. The platform automatically discovers an organization’s digital attack surface and launches multi-stage safe attacks, mimicking a real attacker, to help identify breach and attack paths that are otherwise missed out by conventional tools.