After a breach at a leading multinational bank, tens of millions of user records were accessed and stolen certificates were found exposed.
Before Venafi: Stolen digital certificates were discovered on a phishing site. Around 100 servers were affected, and tens of millions of records were accessed in the attack. The breach inflicted major brand, business and reputational damages to the multinational financial institution.
After Venafi: Global certificate reputation information was implemented that flags misuse across the Internet. Venafi's solution allowed for the immediate whitelisting and blacklisting of certificates, and certificate authorities. Now the company can remediate bad certificates and block rogue CAs, securing their multi-billion dollar assets, brand and reputation.
Banks are a popular target of phishing scams.
Bad guys work to steal or forge certificates that will make their phishing sites look more legitimate and increase the success of their attacks. Most organizations don’t have visibility into the misuse of their certificates or into certificate reputation to better identify stolen or forged certificates that are abusing their brand.
"Cybercriminals were able to access almost 100 servers and tens of millions of customer records"
For this leading worldwide bank, the bad guys were able to use a stolen SSL private key and certificate to conduct a very effective phishing campaign that remained undetected for months. These cybercriminals were able to access almost 100 servers and tens of millions of customer records. After this attack the organization struggled with repairing their damaged brand and rebuilding customer confidence. They turned to Venafi for help with remediation efforts and security that would protect the company against the next attack.
The bank is now using Venafi TrustNet to get global certificate reputation information for its domain. This reputation information flags the misuse of certificates across the Internet. And when misuse is identified, the bank can immediately remediate by blacklisting rogue certificate authorities (CAs) and illegitimate certificates, and then address the vulnerability as time allows.
Now "the bank can immediately remediate by blacklisting rogue certificate authorities"
With Venafi, the bank has been able to restore real trust in its digital certificates and ensure continued customer confidence in its business and brand.