Whale phishing: Commercial litigator attacked in a sophisticated phishing attack

A case study on work that Notion Digital Forensics have completed.

A boutique commercial litigation law firm received a suspicious email that appeared to be a court order. Aware of the prevalence of phishing attacks targeting law firms, they asked Notion Digital Forensics for an opinion on the email. The goal was to determine the legitimacy of the email and assess potential risks to the firm’s sensitive information and financial assets.

Objective

The primary objective of this case study was to analyze the suspicious email, identify any embedded malware or security threats, and provide recommendations to the law firm for mitigating risks associated with phishing attacks.

Approach

Notion Digital Forensics thoroughly examined the email and the attached PDF document. This analysis involved investigating the email’s metadata, the PDF’s structure and content, and running specialized tests to identify any hidden malware or keyloggers that could compromise the law firm’s security.

Results

Results: The examination revealed that the PDF contained a keylogger, a malicious tool designed to record and transmit the user’s keystrokes, potentially allowing unauthorized access to sensitive information. The court order was skillfully crafted to appear legitimate, with content tailored to the law firm’s current activities. The PDF had not yet been identified by any commercial virus scanners, highlighting the sophistication of this phishing attack.

Conclusion

Notion Digital Forensics successfully identified a well-executed phishing attack against the commercial litigation law firm. The forensic analysis provided the firm with valuable insights into the nature of the threat, allowing them to take appropriate measures to protect their sensitive information and financial assets. This case study underscores the importance of vigilance and proactive security measures for law firms and other organizations that handle large sums of money and valuable information.

About Notion Digital Forensics

Notion Digital Forensics are technical experts in cybersecurity, e-discovery, and digital forensic investigation and cyber-defence for business and lawyers.

Other Case Studies

Get expert advice for your case. Contact us now

or phone us on 02 8006-0855

Important Notice

Preserving Confidentiality

The case study presented above is based on real events. To protect the identities of the parties involved, we have altered certain facts and details. These changes may be minor or significant and may include the inclusion of false information. Our aim is to maintain confidentiality for those involved.

Seek Customized Advice

Cybersecurity and digital forensics are specialised fields with various options and trade-offs. The information provided on this website may not be applicable to your specific situation. It is highly recommended that you seek tailored advice from an expert before taking any action. We are cyber security specialists, but we may not be your cyber security specialists. Seek professional advice.