A publicly listed recruitment firm recently acquired a recruitment company in China. To protect their intellectual property—primarily CVs—the firm employed GuardWare INSIGHT.
Not long after the acquisition, a director from the new firm was detected systematically downloading all the CVs from the company’s CRM and syncing them to an Android mobile device. The suspicious activity was flagged by GuardWare INSIGHT. When confronted, the director claimed that his laptop had been stolen and that a hacker had used his credentials to carry out the downloads.
However, this excuse was quickly challenged. GuardWare INSIGHT showed that the data exfiltration occurred while the user was connected to the company’s Wi-Fi in the office, proving the laptop was in his possession at the time. This was further confirmed by building CCTV footage showing the director in the office when the exfiltration occurred.
