An Australian based public transport provider has invested in significant infrastructure and resources to raise their corporate IT security posture to a highly mature state. Having implemented appropriate security controls and processes, the provider was interested in stress testing the corporate IT environment to identify any security weaknesses which may exist, and to test it’s capability to identify, respond, and protect the business from a real world cyber attack.
RIoT Solutions was engaged to perform an attack simulation against nominated physical locations and associated corporate IT infrastructure due to our proven experience as subject matter experts in critical infrastructure and industrial control system environments. Using various real world attack sequences, RIoT Solutions identified weaknesses in the current security solutions which the provider had not factored in as potential attack vectors. Exploiting both physical and technical vulnerabilities, we could test the implemented defence controls and processes, providing invaluable data for analysis, as well as a prioritised list of recommendations for risk mitigation. Gaining physical access, as well as system access via carefully constructed phishing campaigns raised awareness levels for social engineering type attacks providing the business with a baseline of current staff awareness levels around these form of attacks.
The attack simulation identified both physical and technical controls which successfully secured the business from common attack vectors utilised by threat actors. The attack simulation also provided the customer with various vulnerabilities which were exploited via attack methods which the transport provider had not anticipated when implementing their corporate IT security protections. With vast amounts of logs and data collated during the exercise, the customer has been able to finely tune current controls and processes in order to further strengthen and mature their current security posture. Social engineering techniques utilised during the simulated attack has enabled the provider to focus on training techniques to increase staff awareness in relation to both physical and phishing based attacks. This awareness campaign has also provided staff with the necessary knowledge to help them protect themselves from cyber security threats in their personal lives.
The customer name has been withheld due to confidentiality. More information can be provided by contacting RIoT Solutions directly.