What happened
In the spring of 2025, the team of technical specialists at BSC received an alert. The alert was triggered by Augmentt and warned that a suspicious login had been recorded.
Augmentt is a security management platform that BSC uses to check for, among other things, suspicious logins based on criteria like, geographical location.
The alert was about one of our clients–a manufacturer located in Newmarket. The alert was triggered because the login was originating from the United States—several hundred kilometers from where it should have been. Because this activity was unusual, Augmentt sent an alert to BSC.
BSC’s response
Within moments of receiving the alert, one of BSC’s technical specialists got in contact with the account owner and locked the account to prevent bad actors from accessing anything.
The account owner, who confirmed that they had just opened and clicked a suspicious email and that the recent login was not them. The account owner had been phished.
Phishing is a type of email-based cyberattack where bad actors attempt to trick users into revealing or giving access to sensitive information–like passwords or credit card credentials.
Resolution
With the knowledge that the login was illegitimate, the BSC specialist reset all the passwords for the account, reviewed the account activity logs, and instructed the account owner on how to reset their profile.
The bad actors had not been able to access anything because of the instant alert from Augmentt and the quick response by the BSC team.
Key takeaways
- Automated monitoring tools – Without a monitoring tool like Augmentt, the bad actor’s login would likely have gone unnoticed for some period time or never noticed at all.
- Speed matters – When it comes to acting on threats, the longer a bad actor is in your account, the more damage they can cause. A quick reaction can limit or even eliminate the harm that a bad actor can cause in the event of cybersecurity incident.
- Phishing – Phishing remains one of the primary ways that bad actors gain illegitimate access to user accounts. Training will help educate staff on how to spot and avoid phishing attempts. But it only takes one staff member slipping up once for a phishing attempt to get through. Tools like Augmentt can be a second line of defense to prevent damage when phishing attacks are successful.
At BSC Solutions Group we view every situation through a cybersecurity lens and have tools in place to detect and stop attacks before they cause damage. If you would like more information about how our cybersecurity services can help your business reduce risk, contact us today.
