Fortra's Security Success Stories

Fortra offers an extensive cybersecurity portfolio second to none in the industry. Consolidate your security vendors by choosing streamlined, integrated solutions from Fortra that secure your digital enterprise while allowing you to scale to the future.

From infrastructure protection and data security to managed security services, Fortra is strengthening the cybersecurity landscape one use case at a time. We create a more secure environment. You create a simpler, stronger security stack by leveraging the benefits of a single-vendor suite.

Cybersecurity Use Cases by Solution

Take a deep dive into our vast array of tools and customize your security stack. Find the right solutions to future-proof your posture as you explore Fortra’s curated suite of best-in-class security products.

Cybersecurity Use Cases by Industry

Partner with Fortra and know that the protection your industry needs is the protection it receives. Discover how we've tackled your industry's toughest cybersecurity challenges.

Financial Services | Government & Public Sector | Manufacturing | Retail | Healthcare

Managed Detection & Response (MDR)

Ease the operational burden of day-to-day responsibilities by outsourcing a part of your cybersecurity needs. Managed Detection and Response (MDR) reduces the likelihood and impact of a cyberattack with comprehensive coverage for public clouds, SaaS, on-premises, and hybrid environments, with 24/7 threat protection delivered by security experts.

RunBuggy Quickly Scales with MDR

Industry: Transportation

Scenario: RunBuggy is an open car transportation marketplace that uses technology to simplify the process of connecting car shippers with car haulers in real-time. As a very lean team, they needed to adhere to numerous compliance regulations while keeping up with the needs of the business and juggling 24/7 threat monitoring.

Challenges:

Slow incident alerting and response
Inconsistent app availability and performance
Unable to throw tools to achieve outcomes with a small security team

Solution: Fortra’s Alert Logic Managed Detection & Response

Results:

Drastically decreased ticket timelines
Improved customer satisfaction by ensuring consistent app performance
Achieved 24/7 managed security while freeing up resources for higher value projects

READ THE FULL CASE STUDY

Iodine AI uses MDR to Secure Hospital Tech

Industry: Healthcare

Scenario: Iodine Software is an enterprise AI company dedicated to using its one-of-a-kind technology to solve hard, evergreen challenges inherent in U.S. hospitals. These include automating complex clinical tasks to scale valuable resources, generating insights, and ultimately empowering intelligent care.

Challenges:

Industry highly targeted by bad actors
Unable to build a 24/7 in-house SOC
Insufficient resources to properly address security events

Solution: Fortra’s Alert Logic Managed Detection & Response

Results:

Enabled them to prove compliance
Gained 24/7 monitoring without having to build their own SOC
Gained HITRUST certification for their systems

READ THE FULL CASE STUDY

Biscuitville Enhances Security Posture with MDR

Industry: Retail

Scenario: Since 1966, Biscuitville Fresh Southern has been a family-owned company known for serving up authentic Southern breakfast food. Headquartered in Greensboro, North Carolina, Biscuitville has more than 80 corporate-owned restaurant locations in North Carolina, South Carolina, and Virginia. The company has experienced unprecedented growth in the last several years, including a new distribution center and opening locations in a third state.

Challenges:

Need for threat protection and detection
PCI DSS 4.0 compliance
Supplement in-house security staff

Solution: Fortra's Alert Logic MDR

Results:

Seamless data ingestion from multiple sources
Hands-on, collaborative security partnership
ASV scans and log monitoring for PCI DSS compliance

Read the Full Case Study

We’d have to double our staff to do the same kind of alerting Alert Logic does for us.

Max Graupner, VP of Security & Audit, RunBuggy

While it’s hard to put a price tag on it, it’s really priceless to sleep well at night, knowing that there is somebody watching over our environment.

Cheng Zhou, Director of Site Reliability Engineering, Iodine Software

More Managed Detection & Response Case Studies

Data Protection

Protect sensitive information across your enterprise from malicious or unintentional loss. Identify and classify data with visual and metadata labels. Apply the right security policy to support compliance initiatives, and enable secure collaboration with external parties.

Defending Against a $400M Insider Breach

Industry: Manufacturing

Scenario: A large manufacturing and consumer goods company recently experienced a costly insider-driven data breach. With over 60,000 employees and 7,000 partners worldwide, the company fell prey to attack when a research scientist left the company and took over 20,000 sensitive documents (worth $400M USD) with them. The company IP bears a sustainable competitive advantage, and the incident spurred the organization to revisit their data security strategy.

Challenges:

Unwilling to sacrifice operational efficiency for security during the holiday season
No real-time data classification or role-based access policies
Required secure collaboration with international third parties across the Americas, India, China, and Europe

Solution: Fortra’s Digital Guardian

Results:

Resolved primary security issue (sensitive IP now available only on DG secured devices) and automated content and context data classification
Achieved centralized visibility of all sensitive data workflows and policy enforcement worldwide
Secured collaboration with 3rd party partners without losing IP

READ THE FULL CASE STUDY

IP Protection, Secure Partner Collaboration, and $4M in Cost Savings

Industry: Critical National Infrastructure

Scenario: A large natural gas producer in North America with 14,000 workstations needed to securely share sensitive data with its ecosystem of hundreds of business partners. Data included seismic testing, geological modeling applications, investment estimates, and anticipated energy output.

Challenges:

Remote virtual Citrix servers used to access corporate data and network resources by partners
High labor costs from customizing each contractor’s application
IPs at risk from sophisticated users due to weak existing controls
Privileged users had physical access to hardware running Citrix

Solution: Fortra’s Digital Guardian

Results:

Automatic encryption of critical files when data is in motion via email or approved removable device
Over $4M in saved costs largely from eliminating the need for application customization
Eliminated unauthorized executables with access control
Simple deployment of DG agents installed on Citrix virtual systems enabled data policy enforcement at the endpoint without impacting collaboration and productivity

READ THE FULL CASE STUDY

Protecting Call Center Data from the Endpoint to the AWS Cloud

Industry: Technology

Scenario: A global leader in workforce management needed to quickly implement a data protection program to secure source code accessed by remote engineering, as well as protect Intellectual Property (IP) and Personally Identifiable Information (PII) organization wide. The company owned over 7,500 endpoints consisting of Windows, Mac, and Linux.

Challenges:

Lack of end-to-end visibility
Lean information technology and information security staff with a requirement to keep overhead low
No granular data protection controls to secure source code

Solution: Fortra’s Digital Guardian

Results:

Simple purchase and rapid deployment
Instant visibility into all data movement from endpoint to cloud
Digital Guardian, powered by Amazon Web Services (AWS), means no on-site hardware or software to support Data Loss Prevention (DLP)

READ THE FULL CASE STUDY

Simplifying Sensitive Data Protection with Fully Managed DLP & Endpoint Detection and Response (EDR)

Industry: Healthcare

Scenario: A leader in healthcare analytics has a geographically distributed workforce of 1000 users and employees regularly handle sensitive PII and Protected Health Information (PHI) such as patient diagnosis, claim information, and clinical trial data. Several business partners wanted to ensure a stronger level of protection after multiple high profile cyberattacks and requested DLP and EDR solutions on a highly aggressive timeline.

Challenges:

Scarce security resources
Multiple data formats and protection requirements
Regulatory and stakeholder requirements

Solution: Fortra’s Digital Guardian Managed DLP & EDR

Results:

Policies and alerts managed by Digital Guardian team of experienced security professionals and minimal impact to existing staff
Visibility of all sensitive data and control over its use
Satisfied compliance and stakeholder requirements

READ THE FULL CASE STUDY

Securing IP and PII Without Slowing Down Productivity

Industry: Media and Entertainment

Scenario: Pokémon relies on high levels of third-party collaboration to bring new content to market, and their IP consists of animated TV series, movies, home entertainment, and websites. These factors, combined with their fast rise in popularity, resulted in an influx of PII to protect.

Challenge:

Limited information security team
Insecure access to collateral 9rich media files, game designs, and new character ideas) accessed by third parties
Inability to slow production for security considerations as production cycles already run long

Solution: Fortra’s Vera Digital Rights Management

Results:

Simplified security management: security team has visibility and control over data wherever it travels
Sensitive information secured from leakage, regardless how or where it’s shared
Seamless integration with cloud collaboration doesn’t slow down productivity and workflows

READ THE FULL CASE STUDY

Securing Data in Cloud Collaboration Tools

Industry: Insurance

Scenario: A large global insurance provider manages accounts and processes claims for over 90 million customers across 60 countries. The data they handle contains PII and PHI, which makes them a highly attractive target for bad actors, and they must adhere to strict regulations.

Challenges:

Heterogeneous environment that includes multiple storage, collaboration, and communication tools
Maintaining established workflows with Box, OneDrive, and SharePoint without interruption
Complex claims-processing workflows, which include internal and external global stakeholders

Solution: Fortra’s Vera Digital Rights Management

Results:

DRM platform seamlessly integrates into storage, collaboration and communications tools
Data loss prevention no longer inhibit workflows for Box, OneDrive, and SharePoint
Streamlined workflows: Granular policies travel with the files and can be updated in real-time; state, national, and international regulatory mandates met

READ THE FULL CASE STUDY

Data Security for Fast-Growth Semi-Conductor Company

Industry: Manufacturing

Scenario: A large semiconductor company with 2,000 employees and multiple offices experienced a period of rapid growth. To account for it, they relied on fast innovation to stay competitive and recruited highly talented people from a pool of global candidates. However, additional security implements are needed to continue to scale safely.

Challenges:

Securely sharing various file types with internal stakeholders and third-party partners
Identifying and protecting the Shadow IT that emerged in response to rapid growth
Protecting PII of new hires
Adherence to local and international compliance mandates

Solution: Fortra’s Vera Digital Rights Management

Results:

All file types protected wherever they travel, inside or outside the network
Secure collaboration enabled with internal teams and 3rd party stakeholders
New hire PII protected
Local and international compliance mandates met

READ THE FULL CASE STUDY

Insurance Provider Ensures Data Security Across 11 Countries

Industry: Insurance

Scenario: A global insurance and reinsurance provider with over 1200 employees across 11 countries needed to ensure proper safeguards and handling of data for the employees and 3rd party partners. To do this they needed to implement a data classification solution as part of their data protection strategy.

Challenges:

Ensure protection of sensitive client data
Geographically dispersed workforce
Compliance mandates across several countries including GDPR and NYDFS

Solution: Fortra’s Boldon James

Results:

Successful global adoption
Classification consistency across the organization
Met each country’s compliance requirements for data protection

Read the Full Case Study

CTS Logistics Stays On Top of GDPR and GSC

Industry: Logistics

Scenario: CTS Logistics Group provides freight forwarding and logistics services around the world. Within the market that CTS works in, sensitive information falling into the wrong hands could be hugely damaging for all parties involved. Therefore, implementing a data classification solution was a no-brainer next step.

Challenges:

Meeting multiple compliance mandates and policies including:
- GDPR
- Governemtn Security Classification (GSC)
- Cyber Essential Plus accreditation

Solution: Fortra’s Boldon James

Results:

Successfully met all mandates
Improved security culture

Read the Full Case Study

Canadian Department of National Defense Keeps Email and Documents Secure

Industry: Government

Scenario: With national defense and international security a top priority in the current climate, ensuring emails and documents are handled properly is extremely important. As the world's most security -concious organizations, the military are leaders in setting new standards for information security around the globe.

Challenges:

The two classification solutions they were using proved to be inadequate for their needs
Needed to integrate seamlessly into existing infrastructure based on Microsoft Outlook and Microsoft Office

Solution: Fortra's Titus

Results:

Enabeled consistent labeling on email and Microsoft office documents
Reinforced the value of data and how it should be handled

Read the Full Case Study

Turkcell Builds a Complete Data Protection Program with Titus

Industry: Telecommunications

Scenario: Turkcell is the leading communications, technology, and mobile phone operating company in Turkey, with over 39 million subscribers. Turkcell is a Fortune 2000 company, and covers approximately 83% of the Turkish population through its 3G and 99% through its 2G technology supported network.

Challenges:

Needed to ensure employees handle information appropriately and prevent accidental leakage
Document were dalayed is being transmitted or were not sent at all due to pending review

Solution: Fortra’s Titus

Results:

Employees empowered to classify documents in a simple and non-intrusive way
Enabled documents to be transmitted or blocked with higher accuracy

Read the Full Case Study

The Digital Guardian Data Protection Platform provides us with deep visibility and flexible controls, enhancing the protection of our data and IP. Additionally, the ability to purchase the platform from AWS Marketplace enabled us to avoid lengthy contract negotiations and streamline the procurement process

CISO Global Workforce Management Company

For an international brand like Pokémon, having the tools to enable employees and partners to share information more freely, and securely, is extremely powerful. Our employees are leveraging Vera to do their jobs faster and more effectively, keeping us ahead of the curve.

John Visneski, CISO, Pokémon

Using Boldon James Classifier sets us apart from our competitors because we can offer our clients a guarantee that the information we work with is secure and protected, 24/7. It provides us with the practical tools to reinforce a strong culture of individual awareness and accountability within our business.

Nick Collins, CTS Logistics Group

Implementing these products from Titus has enabled us to leverage our existing Microsoft infrastructure and has also proven easy for our staff to use on a daily basis. Classification is and will continue to be a cornerstone of our information security policies and these Titus solutions help us to reinforce security policy with all of our employees on an ongoing basis.

Eyad Zorob, Canadian Department of National Defense

The solution is literally as easy to use as spell check. Employees are able to classify documents in an extremely simple, non-intrusive way. Ultimately this helps us ensure that our data is handled correctly and users are much more aware of how to handle information.

Gurkan Papila, Turkcell

More Data Protection Case Studies

Digital Risk Protection

Safeguard critical digital assets through expert-curated threat intelligence and complete mitigation against brand impersonation, data leakage, social media threats, account takeover, and other digital risks.

Credit Union Uses PhishLabs to Protect Against Executive Impersonation

Industry: Financial Services

Scenario: This large credit union was dealing with malicious actors who were creating emails that looked like they came from a C-Level executive requesting approval of wire transfer of varying amounts.

Challenges: Protect employees from being tricked into phishing campaigns from emails that look like they originate from an executive.

Solution: Fortra's PhishLabs

Results: The PhishLabs team identified the malicious email, the users that received the meail, and dozens of IP addresses associated with the campaign and took them all offline.

Large Credit Union Protects Their Users From Look-Alike Domains with PhishLabs

Industry: Financial Services

Scenario: This large credit union was having challenges identifying threats outside of theit own network. As a financial institution they are a constant target. Malicious actors woudl constantly create look-alike websites to trick users into entering their credentials.

Challenges: Need to protect customers from look-alike websites used by malicious actors.

Solution: Fortra's PhishLabs

Results:

PhishLabs found look-alike websites and had them taken down immediaately on behalf of the Credit Union
PhishLabs also identified a number of registered look-alike domains, and once an MX record was assigned, they wourked with the registrar to immeidately mitigate the threat

Global Retailer Uses PhishLabs to Protect Its Brand

Industry: Ecommerce Retailer

Scenario: This electronics retailer is a global brand that sells and ships products globally. Malicious actors create faudulent websites to trick victims into entering their credit card information in exchange for the product during the busy holiday buying season.

Challenges:

Need to protect the brand reputation of the company
Security staff is overextended during the busy season and doesn't have resources to properly investigate every look-alike case

Solution: Fortra's PhishLabs

Results: The PhishLabs team continuously monitors and finds fraudulent domains and has them taken offline with minimal engagement from the retailer.

We’ve been using PhishLabs for several years. They have done an excellent job in identifying and taking down malicious apps, sites, and posts.

IT Security Engineer Top 20 U.S. Credit Union

[Fortra's] PhishLabs continues to be an outstanding partner in finding and remediating phishing content that targets our interests.

Vice President of Security Global Financial Institution

PhishLabs is a great partner in threat prevention, giving us value on a regular basis and providing confidence that external threats are being well managed.

Senior Manager, Fraud Investigations eCommerce Retailer

Secure File Transfer

Simplify, secure, and automate enterprise file transfer through a single intuitive interface that enables employees, partners, and customers to move data easily without the need for programming skills.

GoAnywhere Forwards HIPAA Compliance

Industry: Healthcare

Scenario: Southeastern Health, a non-profit healthcare system in North Carolina, has been serving the community for seventy years. Providing such services as cardiology, neurology, general surgery, and pediatrics, they decided it was time to upgrade from less-secure FTP methods to a high-caliber MFT solution.

Challenges:

Providing patient privacy
Supporting HIPAA requirements
Transferring files securely and accurately
Streamlining the file transfer process
Saving time and money

Solution: Fortra’s GoAnywhere MFT

Results:

Secured patient privacy with encryption
Supported HIPAA compliance requirements
Secure, automated file transfer initiatives
Provided ease of use and “the [Fortra] support team is a huge strength”
Faster than previous FTP solution and economical

READ THE FULL CASE STUDY

High-Volume Banking Transfers with GoAnywhere MFT

Industry: Financial Services

Scenario: Banking services-management firm FPS GOLD was stretching beyond the capacity of its current MFT solution. At 30,000 transfers per week, the system gave out and often lost files in the process. To compensate, the team had to create custom scripts and spend up to an hour locating each error. They needed an MFT solution that could scale seamlessly to their business needs.

Challenges:

More reliable and customizable MFT solution
A better user interface
Better licensing and pricing arrangements

Solution: Fortra’s GoAnywhere MFT

Results:

Stable data transfers “especially when transferring multiple files at once"
Faster transfer setup and issue research and resolution
$12,000 yearly savings in licensing fees over previous solution

READ THE FULL CASE STUDY

Fortra Keeps Remote Government Services Rolling Securely

Industry: Government

Scenario: A North American government agency with more than 1,500 employees works with citizens every day as they request building permits, pay parking fees, process property tax payments, and even report crimes. When the COVID-19 pandemic hit, the agency quickly realized they needed to give citizens better ways to perform civic data sharing remotely.

Challenges:

Sharing sensitive data online security
Large volumes of fillies shared and received daily
Maintaining business continuity remotely

Solutions: Fortra's GoAnywhere MFT and Fortra's Clearswift Secure ICAP Gateway

Results:

Secure remote portal
Citizens can remotely apply for building permits and submit other critical applications
No human interaction needed to keep government business flowing
Protection against malware, viruses, and other hidden metadata

Read the full case study

Email Security & Anti-Phishing

Keep emails, brands, and data protected from Business Email Compromise (BEC) and phishing attacks. Reduce the chance of cyberattacks starting with malicious inbound email campaigns and prevent accidental data loss.

Fortune 100 Eliminates Imposters with Agari

Industry: Technology

Scenario: A Fortune 100 company needed to clamp down on the number of social engineering attacks levelled at its employees. Even though internal cybersecurity architecture may be strong, what is often harder to protect is the subtle attacks that slip under the surface. Executives were being impersonated online and employees were getting phished.

Challenges:

Business email compromise and advanced email phishing attack through executive impersonation
Brand domain abuse, including brand spoofing and executive impersonation

Solution: Fortra’s Agari DMARC Protection and Fortra’s Agari Phishing Defense

Results:

Granular email gateway data for metric-driven defense
Significantly reduced number of email threats since deployment
The efficiencies generated reduced the amount of time employees and SOC analysts spent on identifying and triaging phishing attacks

READ THE FULL CASE STUDY

Global Bank Trusts Clearswift for 20 Years and Counting

Industry: Financial Services

Scenario: This international banking institution boasts over 500 branches and thousands of employees. For the past 20 years, it has relied on one security company to provide them with the robust email solution they need to manage regional compliance requirements, policy implementation, and encryption.

Challenges:

Encrypted email required
GDPR Data Compliance
Complex data policies

Solution: Fortra’s Clearswift Secure Email Gateway (SEG)

Results:

Support for Transport Layer Security (TLS) and several other encryption protocols
GDPR compliant via automated encryption tools
Centralized management and easy deployment don’t over-burden professionals and keep things simple

READ THE FULL CASE STUDY

Pharmaceutical Prevents Domain Spoofing with Agari

Industry: Pharmaceutical

Scenario: In 2018, leadership at a pharmaceutical company discovered a pressing security gap. They found themselves on an aggressive deadline to get all domains to p=reject and ultimately chose the security provider they were confident would get them there on time.

Challenges:

Tight deadline for DMARC implementation
Prioritization of fresh threat intelligence from vendor
Security vendor must adhere to timeline and be versed in global enterprises

Solution: Fortra’s Agari DMARC Protection

Results:

The project beat the aggressive timeline of six months, wrapping up at p=reject in five months and two days
No issues arose during the implementation
As a result of implementing DMARC, the company’s email security posture has become a strategic differentiator in the marketplace

READ THE FULL CASE STUDY

With the reduction of attacks, we have driven efficiencies throughout the company. Our employees and our SOC analysts are more productive because we have reduced the number of phishing attacks. They are spending less time addressing issues in the email security area.

GSM for Messaging Fortune 100 Technology Company

Agari clearly demonstrated superiority due to its experience working with global enterprises, its methodology for mobilizing teams, and its processes for collaborating with the internal information security team to make this implementation a success. That’s why we chose Agari DMARC Protection.

Head of Collaboration Services Pharmaceutical Company

Security Awareness Training

Build cyber threat resilience and create a security-aware organizational culture. Empower security leaders to change end user behaviors and to reduce the risk of data breaches, downtime, and reputational harm.

University Achieves 42% Voluntary Security Awareness Rate

Industry: Education

Scenario: One Canadian university saw the need to increase security awareness among its faculty and students due to an increasing number of phishing emails that were getting through. There was a great need to increase general security knowledge as sensitive on-campus data can include proprietary research data, student financial information, and personally identifiable information.

Challenges:

Faculty afraid of negative repercussions of failing security awareness training tests
Mandatory campus-wide training wasn’t an option
Finding one centralized way to teach security awareness with a partially remote student composition

Solution: Fortra’s Terranova Security – Security Awareness Training

Results:

Security training in a non-intimidating environment reduced the fear of failure among faculty
Reached 42% voluntary participation rate among students

Manufacturer Reduces Phishing Click Rate by 20%

Industry: Manufacturing

Scenario: A global manufacturing company faced challenges creating a unified security culture across a distributed work force. The company needed to move quickly as phishing attacks and frequent and sophisticated cyberattacks threatened the organization.

Challenges:

Multi-lingual workforce
Limited information security resources
Low adoption rates with current security training solution

Solution: Fortra’s Terranova Security – Security Awareness Training and Managed Services

Results:

Multi-lingual security training materials
Solution compatible with limited resources and available for immediate implementation
80% adoption rate within the first three years

Vulnerability Management

Identify, evaluate, prioritize, and report on security weaknesses that may be putting your organization at risk. A strong vulnerability management program helps streamline your security efforts and reduce the likely hood of an attack.

Broadway Bank Modernizes with Personal Security Analyst (PSA)

Industry: Financial Services

Scenario: Broadway Bank is one of the largest, strongest, and most independent banks in Texas. To better serve its customers, it must transition from inherited manual processes and develop a holistic view of the dangers facing a modern financial institution.

Challenges:

Lingering manual processes require automation
Dynamic and growing environment
Lacking a holistic view of vulnerabilities across the network and endpoints

Solution: Fortra’s Digital Defense Frontline Vulnerability Management

Results:

Achieved a clear view of vulnerable endpoints on the network and recommended remediations
Gained insights on the type of access an intruder can achieve along with the path of attack to address it

READ THE FULL CASE STUDY

VLM-Pro is a security solution which plays a critical role in Broadway Bank’s defense-in-depth approach to security.

Sonny Montiel, VP of Network Security, Broadway Bank

Integrity Management

Remediate unauthorized changes, reduce overall risk and maximize uptime. Proactively harden and automate compliance enforcement through real-time change intelligence and threat detection.

Walgreens Takes a Proactive Approach to Security

Industry: Retail

Scenario: Walgreens is one of the largest pharmacies in the US. They handle online and in-store sales and process prescriptions for millions of customers. Because they straddle the line between retail and prescriptive medicine, they have to get out in front of security issues as more services are moving online.

Challenges:

Lack full visibility into their environment
Incomplete understanding of what they do well with their operational processes and what could be improved

Solution: Fortra’s Tripwire ExpertsOps

Results:

A more proactive approach to security measures
Learned about opportunities for improvements and efficiency across their existing processes

READ THE FULL CASE STUDY

Chi-X Australia Scales Worldwide

Industry: Financial Services

Scenario: Chi-X Australia is a securities and derivatives exchange transforming the Australian investment market through a focus on customers and innovation. The company delivers easy, cost-effective access to local and global investment opportunities.

Challenges:

High number of audits from regulators and participants
Lean security staff
Needed something with no latency or overhead on systems

Solution: Fortra’s Tripwire

Results:

Demonstrated a strong security program to auditors
Proved to regulators they can do with a staff of 10 what others can only do with a staff of 100
Gained trust from regulators and participants by demonstrating the integrity of millions of files and configuration settings with no latency
Tripwire was eventually scaled to other parts of the business such as invoicing and DevOps.

READ THE FULL CASE STUDY

Western Farmers Electric Cooperative Gets a Security Upgrade

Industry: Critical National Infrastructure

Scenario: Western Farmers Electric Cooperative (WFEC) is an electric generation and transmission cooperative serving 550,000 residents across Oklahoma and New Mexico. Like many critical infrastructure sectors, they faced extra complexity from manual processes and industry-specific requirements when looking to update security measures.

Challenges:

Time-consuming and error-prone manual processes for systems baselining
Not enough skilled security expertise to gain actionable insights
Critical infrastructure requires compliance with NERC CIP

Solution: Fortra’s Tripwire Enterprise

Results:

Reduced baselining from hours to minutes with precision
Simplified system hardening and attack surface reduction
Produced actionable insights quickly through automated data collection and analysis
Successfully helped meet NERC CIP compliance

READ THE FULL CASE STUDY

Offensive Security

Identify and mitigate security risks by simulating real-world attack scenarios. This helps organizations understand their security posture, identify and validate potential weaknesses, and prioritize the risks that truly pose the biggest threat to your operations.

First-time Fortra Pentest Reveals Surprising Results

Industry: Manufacturing

Scenario: A large multi-national manufacturing company requested a routine penetration test to test their current defenses. While the organization outsources a pen test annually, this was the first year with Fortra at the lead.

Challenges:

Previous pen tests turned up “nothing in particular”
Dozens of machines serving a large international base

Solution: Fortra’s Core Impact and Cobalt Strike

Results: The pen-test harvested 900 user credentials, including multiple Domain Admins. An attack of this nature would allow a bad actor to take over the organization’s entire domain. Details of the report included:

An exploited vulnerability in a remote access utility from SolarWinds
Exploited Windows OS vulnerability to elevate privileges to “root” or superuser account
Password re-use from administrator across hundreds of servers
Access to LSA secrets which housed a large amount of domain cached credentials
The exercise provided critical insights and details for the security team to harden the environment to prevent an attack like this from an actual malicious actor.

READ THE FULL CASE STUDY

Protecting Against Threats to National Security

Industry: Government

Scenario: A U.S. government lab with thousands of endpoints and hundreds of networks across dozens of facilities is responsible for monitoring cyberattacks and other matters of national security. It employs physicists, chemists, biologists, and engineers who work on projects that need to be protected from nation state actors.

Challenges:

Massive database of highly sensitive data
Highly complex and dynamic IT footprint
Inefficient use of resources due to false positives from high volumes of vulnerability scanning results

Solution: Fortra’s Core Impact

Results:

Strong complement to vulnerability scanning to gain insights on attack sequence from real-world scenarios
Increased efficiency by interpreting results from vulnerability scans eliminating false positives and prioritizing most critical exposures
Were able to prove to auditors their constant measuring of exposure to address critical points of risk

READ THE FULL CASE STUDY

Airline Staying One Step Ahead of Threats

Industry: Transportation

Scenario: This major airline employs 40,000 individuals globally and services over 600 international destinations between them and their partners. One of the biggest in the world, they were in the process of evolving their multi-layered strategy and seeking to expand their existing security investments.

Challenges:

Limited security resources
No process in place for evaluating security products and solutions

Solution: Fortra’s Core Impact

Results:

Force-multiplied existing team by reducing testing process from days to minutes
Established a standardized evaluation process for different security technologies
Developed insights on which security additions would be most useful based on pen testing attack data

READ THE FULL CASE STUDY

Before we had [Fortra’s Core] Impact we might have carried out tests on a scheduled basis, but now we have the ability to do so whenever we need to based on emerging vulnerabilities and threats, and ongoing changes to our IT environment.

Senior Research Engineer US Government Lab

Running a penetration test used to be very risky, but now with Core Impact the testing and penetration processes are safer and more manageable. Also, Core Impact made my team and me more efficient, reducing our testing time from days to just minutes a week.

Director of Security Global Airline Company

Automation

Force-multiply your existing defensive resources through automation solutions. Enable your organization to meet any business challenge quickly as Fortra’s time-saving technologies free your analysts to apply their expertise where it counts.

How Automation Benefits a Busy Cybersecurity Team

Industry: Cybersecurity Software & Services

Scenario: Fortra’s PhishLabs is a digital risk protection and external threat intelligence solution. As business increased, the PhishLabs SOC needed to scale and keep pace with an exponentiating workload.

Challenges:

Fast growing client list caused resources to be stretched thin
Too much time on repetitive tasks
Thousands of sites to monitor with manual mitigation techniques

Solution: Fortra’s Automate

Results:

Hundreds of incidents closed automatically per week
Faster shutdown times for clients
20 hours per week saved on report generation

READ THE FULL CASE STUDY

Be the Next Fortra Success Story

Want to know more? Talk to a Fortra Subject Matter Expert to get your questions answered.

Contact Us

Explore our library of Fortra Case Studies to discover more cybersecurity success stories.