A medium-sized manufacturer fell victim to a ransomware and extortion attack, and one of the contributory factors was identified as the flat structure of their network. In response, the company partnered with Toro to do an incident response and investigation to understand the extent of the breach and the vulnerabilities that led to the attack.
Toro immediately isolated the affected systems to prevent further spread of the ransomware and to limit unauthorised access. To enhance security, deter future compromises, and address vulnerabilities, Toro meticulously designed a new network architecture.
The new network adopted a Zero Trust approach, implementing strict access controls and verification mechanisms. It was organized into zones, each with its own security policies and restrictions. A hybrid approach to service delivery was established to balance accessibility and security. The design emphasized visibility, providing the IT team with comprehensive insights. This design was implemented applying the concept of a global area network utilising mesh network technologies and software designed networking. The manufacturer's enhanced security posture positioned them to operate securely and efficiently while deterring future cyber threats.