In an interview with Insurance Business Magazine, Managing Director and North America Leader Ben Demonte explained how his team has developed the ability to reduce the cost of digital forensics investigations on Office 365 email compromises by surfacing more specific details about the criminal's activity within the breached mailboxes. An excerpt of the article is below:
By Alicja Grzadkowska:
Investigations of email accounts can be expensive since targeted companies have to rake through years of messages to determine whether personally identifiable information or protected health information was compromised, according to Beazley, though one firm is leveling the playing field.
“Under normal circumstances or the way those investigations worked in the past, you would go into the portal and you could see a particular IP address that was suspicious logging on to a mailbox, but there wasn’t much granularity into what the actor did while he was in that mailbox,” said Ben Demonte, US cyber head for Kroll, a corporate investigation and risk consulting company. “Kroll has developed a capability in which we can see exactly what the actor did while he was in that mailbox. That allows for the investigation to be much more efficient and instead of engaging through a document review of an entire mailbox, we can do it now for only specific messages that we know were accessed.”