E-STAP 360: the platform for analysing suspicious emails in the face of advanced threats
The Information Systems Department of the company ABC has been confronted with several recent cyberattacks which have used email as an entry vector into the IS.
According to studies, 91% of cyberattacks use email as the first vector to infiltrate computer systems.
Additionally, the average cost of a phishing attack is $1,500 per employee, which is a significant cost to the business.
The IT Department therefore decided to implement the E-STAP 360 solution, which allows users to report suspicious emails and mitigating the risk of attack.
Once reported in a dedicated mailbox, a case is created. The email is then analyzed through ESTAP 360 partners' solutions, and automatically through the XSOAR.
Five steps are carried out simultaneously to analyze the email, File analysis helps identify malicious behavior and associated matches in anti-virus databases.
The analysis of domain names in particular gives analysts clues as to whether or not the attack was targeted. URLs are analyzed in order to understand the attackers' systems and their level of expertise. IP analysis makes it possible to understand the
infrastructures used and to make correlations with the signatures (TTP) of malicious actors. The scan results are then consolidated into a PDF, which is reviewed by an analyst to determine if the email is potentially malicious or not.
The Sopra Steria analyst validates the E-STAP 360 analysis and enriches the report with recommendations for the remediation and prevention of subsequent attacks.
The detailed report is then sent to the employee and to the IT Department to provide them with the tunrkey actions. The implementation of the E-STAP 360 solution has enabled ABC's ISD to respond effectively to cybersecurity issues related to suspicious
emails.
Thanks to this solution, the company was able to limit potential impact of attack and strengthen its overall security, while protecting its data sovereignty.