CASE STUDY / 003

Business Email Compromise Leads to Financial Loss and Ransom

/ WHAT HAPPENED?

A law firm contacted us after receiving a ransom email due to a cyber attack. The attack started with compromising employees’ emails through impersonation. Then the weak email security and fraudulent requests targeting the finance department to approve $42K transfers to overseas accounts

Days before the ransom email, the hacker accessed the firm's unprotected website, email, and text. They researched the CEO’s schedule and writing style and took advantage of the firm's weak password system. When the CEO was unavailable by phone, the hacker impersonated him and requested six money transfers. The finance department noticed the fraud after the first transfer and sought help from AMBIT IT.

100+ TB

Data Impacted

5

Business Days Delayed

150+

Devices Re-formated

300+

Client’s Customers Impacted

/ PROBLEMS & AMBIT IT SOLUTIONS.

PROBLEM #1 / Unsafe Passkey 

The CEO and his spouse manage the company's passkey when he's unavailable. The passkey is also too simple and can be easily hacked.

SOLUTION  

We incorporated the company’s passkey into the OnePass system. Ambit IT manages the passkey in a secure network. Employees can now access passkeys safely at any time.

PROBLEM #2 / Insecure Network

A hacker discovered an unprotected flaw in the company website. This allowed them to access every employee's email and company messages.

SOLUTION

We brought the company’s passkey to the OnePass system. Ambit IT manages the passkey in the secure remote network. Employees can now access passkeys securely 24/7.

“Cybersecurity starts with prevention. Follow the Six Principles of Cyber Security to keep your computer and network safe. When it comes to data protection, use strong encryption and keep copies off-site. Be suspicious of unsolicited email offers and don’t open attachments from people you don’t know. Regularly back up your files to be in a good position in case of an emergency. Finally, use common sense when online.”

— Ervine
The Six Principles of Cyber Security

Ambit IT Protection

Basic IT Plan

Perfect for small businesses needing essential IT support without advanced security.

$135/mon

24/7 Helpdesk Support (via Remote IT and phone)

Microsoft 365® administration (email, user management)

Basic Endppoint Monitoring and Patch Management

Cybersecurity Essentials Plan

Ideal for SMBs prioritizing cybersecurity alongside IT support.

$175/mon

All Basic IT Support Tier services

Managed Detection and Response (MDR) via Bitdefender®

Firewall Management and Intrusion Detection

Email Security (scanning for Microsoft 365®, Gmail®, and other email platforms)

Detailed Security Analysis (threat analytics and compliances)

$205/mon

Premium IT & Security Plan

Designed for growing businesses requiring comprehensive IT and advanced cybersecurity.

All Cybersecurity Essentials Tier services

Acronis® Backup Management (daily backups, recovery planning)

Multi-Cloud Management (including Azure®, AWS® and other industry leading softwares)

All tiered service plans include one (1) hour of service per month.

Additional services exceeding one hour are billed at a rate of $135 per hour.

Contact Our Team to Schedule a 1-1 Briefing

Name

First Name

Last Name

Phone Number

(###)

###

####

Business Email Address

Number of Employees (approx.)

Number of Devices (approx.)

Which IT services are you interested in? (Select all that apply)

Cyber Threat Protection

Backup & Recovery

Remote IT Support

Managed IT Services

Cloud Computing

Network Connectivity

Firewall Management

All of the Above

I am not sure, I need an IT consultation

What's your industry?

*At Ambit IT, we guarantee your data remains private and is never shared with a third party.