CHALLENGES • Ongoing targeted attacks • Lack of visibility into Deep and Dark Web • Risk of data leak SOLUTION • Continuous monitoring and analysis of Deep & Dark Web sites and forums • Continuous stream of intelligence about threat actors’ capabilities and intents • Access to proprietary historical intelligence • Near real-time targeted intelligence about indications of leaked records and potential data breaches • Strategic intelligence enrichment reports OUTCOME • Discovery of the telco's leaked records and exposed servers • Exposure of planned targeted attacks on the telco • Identiﬁcation of attack groups directly targeting the telco and the nation • Strengthening the telco's position as a national and commercial cybersecurity leader How a Large European Telco Uses LUMINAR to Protect a Nation from Cyber-Attacks CASE STUDY A large European national telecom company, with over 21,000 employees and subsidiaries across the continent, is a prime target for cyber-attacks, as it serves national assets. The telco maintains an advanced SOC, and as it considers cybersecurity strategic to its operations, aims to always improve its security resilience. In a recent incident, a signiﬁcant cyber-attack targeting high- proﬁle national organizations took place, with signs pointing to the possibility of nation-state actors, or their proxy groups, being behind the attacks. Although the attacks were not directed at the telco, the government’s security agencies, including ministerial involvement, reached out to the telco's SOC, and used the SOC’s advanced technologies and resources for defense operations. INCREASE IN TARGETED CYBER-ATTACKS In recent years, the telco has seen a rise in attacks on the country and on their organization speciﬁcally. The risk of being a target for nation-state attackers isn’t new to any national telco that is part of a country’s critical infrastructure. They are used to being a prime target of various attack groups, including cybercriminals, nation state actors and hacktivists/terrorist groups. While assessing their overall cyber defense capabilities, the telco concluded that in order to improve their resilience they needed to expand their monitoring capabilities to cover existing blind spots. For example, the telco lacked the ability to monitor threat actors’ activities outside the organization, including in the Deep and Dark Web. Within just a few short months, the telco evaluated LUMINAR, Cognyte's threat intelligence solution, selected it and the solution was deployed. What prompted the telco choose LUMINAR was the combination of superior intelligence, both from a technological and human analyst perspective, built-in methodologies, ongoing support and high-end reports. In addition, LUMINAR can be leveraged by the telco to enable a new revenue stream, should they oﬀer CTI services to their customers in a Managed Service Provider (MSP) model.