Phishing, Fraud and Scams
Use cases

Kartos XTI Watchbots' automated and continuous monitoring capabilities of social media and internet and search terms associated with a brand without false positives allow our client, a public body, to locate and disable campaigns that usurp or misrepresent its name and brand in order to mislead citizens and users.
CHALLENGE

Due to its public service nature, our client needed to pinpoint both open fraudulent domains and active phishing, fraud and scam campaigns that were usurping its corporate identity to carry out the deception. The agency was aware that these social engineering techniques using its identity were being carried out recurrently on the internet and social networks and needed to find the cybersecurity tool that would allow it to quickly and effectively locate and disable those in place and detect new ones in real time, in order to neutralise them before they could reach citizens.

Solution
After analysing the client’s main security need and connecting it with other causes or derivatives, Enthec Solutions proposes to the organisation the acquisition of a Company Enterprise licence associated with its main domain, in order to, as a first step, locate and deactivate the active campaigns at the time the monitoring by Kartos begins. Once deactivation is achieved, continuous real-time monitoring allows the organisation to locate phishing, fraud and scam campaigns that usurp its identity, as well as spoofed domains as soon as they are activated or reactivated, and to immediately deactivate them.
In addition, the organisation monitors its external attack surface to locate open breaches and exposed vulnerabilities in the other categories controlled by Kartos XTI Watchbots, thus reinforcing its cybersecurity strategy through the incorporation of Kartos’ cyberintelligence capabilities.

Result
Thanks to Kartos’ automated word search capabilities, with false positive suppression, and continuous monitoring of the internet and social media, the agency has been able to deactivate phishing, fraud and phishing scams that impersonate your identity, as well as phishing, fraud and scam campaigns. In addition, it can now monitor in real time the appearance of new domains and similar campaigns and immediately deactivate them.
In addition, it uses the capabilities built into the Enterprise licence of the Kartos XTI Watchbots platform to protect its databases and extend its cybersecurity strategy to the external attack surface.
Protecting Corporate Mail
Use cases

The information provided by Kartos XTI Watchbots enables the hospital to quickly identify the breach and its source and to carry out the necessary corrective measures to protect hospital systems.
CHALLENGE

A hospital is an organisation that belongs to the category of critical infrastructures subject to strict compliance with legal regulations on the protection of confidential patient data as well as business continuity protection. After a period of malfunction and loss of information in some communication systems, the hospital's management team accepts the need to find out, with as much certainty as possible, the existence of security breaches in its IT system. In this way, it ensures that the budget allocation for remediation will be adjusted to the real need of the risk.

Solution
The hospital’s CISO contacts Enthec Solutions and starts using the Kartos XTI Watchbots cyber intelligence and cyber security platform, which is used by the hospital’s CISO:
- It continuously tracks and monitors the Internet, the Dark Web, the Deep Web and Social Networks in real time for breach confirmation.
- Find evidence of the existence of the hospital’s security breach and the leak of institutional data and information.
- Detects the source of the security breach in a corporate email misconfiguration.
- It provides the hospital with the necessary information to carry out vulnerability remediation and risk destruction.

Result
After receiving the report with the results of the analysis performed by the Kartos XTI Watchbots platform, the hospital obtains certain proof of security breaches in its IT system, which are being exploited by cybercrime to steal critical confidential information. Thanks to the information gathered, the hospital takes the necessary actions to resolve the vulnerability and close data leaks of which it was unaware. The analysis also detected the flaw in the configuration of the mail system that had been used as a gateway to the hospital’s information. Thanks to the information detected by Kartos XTI Watchbots, the hospital implemented the following immediate corrective measures:
- Reduction of low encryption.
- Permanent updates of the security system.
- Changes in the internal communication and mailing policy.
- Tightening of the policy on compliance with the requirements of the
- Legal regulations on data protection and systems.
Once the effectiveness of the solution provided by Enthec Solutions has been verified and in order to avoid future security breaches, guarantee the integrity of the confidential information hosted in its system and know at all times the exposure in its external perimeter, the hospital permanently hires Enthec Solutions’ Cyber Intelligence and cybersecurity service. Through the Kartos XTI Watchbots platform, it obtains constant monitoring of hospital exposure on the Web, Deep Web, Dark Web and Social Networks, recurrent and continuous analysis of the hospital’s cybersecurity status and immediate detection of any vulnerability or security breach when it occurs.
Database Protection
Use cases

The capabilities of Kartos XTI Watchbots allow the insurer to have in the same platform a cyber-protection tool and a tool for objective and accurate risk assessment of one of its most demanded and most promising products.
CHALLENGE

The insurance company had two cybersecurity fronts open in different departments, with different approaches and business utility. On the one hand, it was looking for a cybersecurity solution that would allow it to keep its sensitive databases protected in real time and control the organisation's IT risk. On the other hand, it needed to find a way to gain accuracy in the assessment with objective and up-to-date data of the cyber policies offered to its customers.

Solution
In addition to having its external attack surface continuously monitored in real time to protect its information and systems, and to obtain objective and up-to-date data on the cybersecurity status of cyber policyholders, the Insurer is building a new service to introduce Cybersecurity Scoring provided by Kartos XTI Watchbots into the offering to its customers.

Result
Once the client’s needs have been analysed, Enthec Solutions proposes the use of the Kartos XTI Watchbots platform to the insurance company, through two types of licences, to solve the two fronts. With an Enterprise licence, the need for real-time protection of its databases and control of the company’s IT risk is covered. With a Third-Party licence, you can obtain objective, real-time data on the cybersecurity status of your potential client that complements and adjusts those obtained through traditional assessment tests (pentesting and due diligence) to make an accurate assessment of the risk of each cyber-policy studied.
Continuity of service - Third party risk
Use cases

The Cyber Intelligence capabilities of the Kartos XTI Watchbots platform enable our customer to continuously protect the continuity of their critical service and third party risk in real time.
CHALLENGE

The main concern of our client, an important organisation in the energy and utilities sector, was to find a way to ensure the continuity of the essential service it provides to its customers, in the face of any threat or vulnerability that could disrupt it. Our client was looking for a way to reinforce its cyber security strategy by adding to the protection it already had in its internal perimeter a solution that would allow it to control the external perimeter. In this way, its cyber security strategy would not only be prepared for an effective reaction to a cyber attack, but it would also have cyber attack prevention capabilities, thus reducing the chances of
materialisation of a cyber-attack and thus reducing the chances of a breakdown in service continuity. On the other hand, its extensive dependence on third parties made it desirable to ascertain and control the risk that its business relations with any of them might entail.

Solution
Having understood the client’s needs, Enthec Solutions offers the energy company the most complete monitoring of its domain and subdomains through an Enterprise licence of the Kartos XTI Watchbots Cyber Intelligence platform. In this way, the company begins to control and neutralise open security breaches and vulnerabilities exposed outside its IT perimeter. In addition, Enthec proposes to the company the acquisition of a Kartos ThirdParty licence to effectively control the risk of third parties and prevent its suppliers and partners
and partners from becoming a threat to the continuity of the service.

Result
The company was able to locate and neutralise breaches and vulnerabilities that posed a direct threat to its security and service continuity.
security and service continuity. Once resolved, Kartos’ continuous, real-time monitoring allows the company to detect breaches and open vulnerabilities in the external attack surface as they occur, thus shortening the exposure time and preventing them from becoming a threat to the business.
In addition, thanks to Kartos XTI Watchbots, the company also has continuous, real-time monitoring of the risk in its value chain.
Protection of Sensitive Data
Use cases

The cybersecurity and compliance capabilities of the Kartos XTI Watchbots platform enable the detection of security breaches and vulnerabilities that may affect the protection, integrity and privacy of the sensitive databases managed by the entity and whose custody is specifically regulated by law.
CHALLENGE

The financial institution needed to guarantee the protection of its sensitive databases in order to comply with the strict legislation regulating their custody and avoid possible administrative sanctions, as well as reputational crises. In addition to this objective, it also needed to ensure the continuity of its essential service by locating and neutralising any security breach or vulnerability that could affect it.

Solution
After analysing the client’s needs, Enthec Solutions proposed the acquisition of a Company licence and a Third-Party licence to monitor its own and its value chain’s database and service continuity risks. Third-parties are a major risk in terms of compliance, but also in terms of service continuity, so simply monitoring its own risks would not have been effective in achieving the desired objective.

Result
When it started using the Kartos XT IWatchbots platform, the financial institution detected open gaps and exposed vulnerabilities that it had not identified and proceeded to close them to avoid the risk of administrative sanctions and the risk that they could be used to carry out a cyber-attack against its systems. Some of these breaches stemmed from inadequate protection of part of its value chain, so it activated the procedure for notifying the third parties involved. Today, thanks to Kartos by Enthec’s automated and continuous monitoring, the financial institution protects the continuity of its service and its sensitive databases, as well as controls the risk of third parties, receiving real-time alerts of new breaches and vulnerabilities as soon as they are generated.
Continuity of Service
Use cases

The in-house and value chain vulnerability detection capabilities of the Kartos XTI Watchbots Cybersecurity and Cyber Intelligence platform, through automated and continuous monitoring of the external attack surface, are used by the organisation to protect the system on which its critical service depends.
CHALLENGE

Our client, an organisation on whose logistics system the supply of essential products depends, needed to reinforce the protection of its system, as it was sometimes experiencing failures that put its service at risk. After an exhaustive study by its information security department, the entity had determined that these failures were not attributable to the system's own operation and suspected the existence of open and exposed security breaches exploited by cybercriminals, which its cybersecurity tools had not prevented or detected.

Solution
Following an analysis by the Enthec team of the client’s cybersecurity status, exposed vulnerabilities were detected, as well as those of a key member of its value chain.
vulnerabilities were detected, as well as those of a key member of its value chain. These own and third-party vulnerabilities were being exploited by cybercriminals to complicate the continuity of the service. Therefore, it was proposed to the client to acquire a Kartos Enterprise licence for its own monitoring, together with a Kartos Third-Party licence to control the risk of its value chain.

Result
Once the detected vulnerabilities have been eliminated and those in its value chain that posed a risk have been alerted, the organisation guarantees the continuity of its essential service through the automated and continuous monitoring of both its own domain and its value chain, provided by our Kartos platform. In addition, thanks to Enthec, it now detects and deactivates recurring phishing, fraud and scam campaigns on social media using its brand, enabling it to maintain a reputation it has built up over its long history.