Download the report here
The Report at a Glance
The organisation in this case is a medium-sized civil society organisation working in the humanitarian sector. It has a global focus with presence on all continents. Its headquarters is in Europe, and it has offices in approximately 20 countries.
In 2021, the organisation was targeted by a brute-force attack through their webmail, followed by targeted phishing emails on the same day. With support from an external cybersecurity company and in cooperation with the organisation’s management and staff, the IT team managed to avert the intense attack that lasted for approximately one full working day. It took several weeks to manage the aftermath of the attack.
What were they key lessons learnt?
- System maintenance is important
- A strong budget enables better security
- Communicating early and regularly is key
- Don’t panic, anyone can be a target