An insurance brokerage, worried about their existing MSP’s security shortcomings and the risk of an unrecoverable cyberattack, took control of their IT security. They partnered with Aldridge for Secure IT Outsourcing, investing in a 24/7 security team to protect their business. Shortly after moving to Aldridge, the brokerage faced a malware attack. The Aldridge security team quickly detected and contained the threat, preventing damage or disruption—validating the brokerage’s decision to prioritize security.
Client Profile
Industry: Insurance
Number of Employees: 200+
Location(s): Texas & California
Client’s Challenge
The brokerage’s CFO and IT stakeholder lacked confidence in their current IT provider’s ability to protect their business. There was no proactive communication around security, and while they knew threats were constantly evolving, their existing MSP never addressed it. Security always seemed to be an afterthought. The CFO grew increasingly anxious, fearing that an attack could result in the loss of critical data with no reliable recovery plan in place—putting the business at serious risk. Although they had backups, they had never been tested, and the CFO was uncertain whether they would even function if they were attacked.
The CFO sought cybersecurity information, which led her to attend a “Cyber Threat Update” event hosted by Aldridge and the FBI. Impressed by the valuable insights and Aldridge’s commitment to educating business leaders about security, she quickly recognized that their current IT provider was falling behind on the latest security practices. Like many modern businesses, the brokerage was increasingly vulnerable to sophisticated cyberattacks. Their IT infrastructure was not equipped to detect or respond to these threats in real time, and the risk of a breach—from ransomware to malware to phishing—was escalating. Without an effective security framework and 24/7 monitoring, a single incident could disrupt operations, result in significant financial loss, and damage client trust. Confident in Aldridge’s expertise, she made the strategic decision to partner with Aldridge and bolster their security.
Aldridge’s Solution
To address these risks, Aldridge implemented Secure IT Outsourcing, a comprehensive IT and security solution designed for organizations that understand the importance of proactive defense. Key components included:
- Security Assessment & Risk Management – We assessed their security and uncovered critical vulnerabilities that left their IT environment exposed and incapable of recovery in the event of a compromise. After meeting with key stakeholders to present our findings, we developed a comprehensive plan to strengthen their defenses, enabling them to detect, respond to, and recover from potential attacks with minimal disruption.
- Threat Detection & Response: Managed Detection & Response (MDR) was deployed on all company-owned devices, along with Security Information & Event Management (SIEM) to centralize and store security data for continuous monitoring and investigation.
- 24/7 Security Operations Center (SOC): Security specialists monitored the brokerage’s IT environment around the clock, ready to respond to threats at a moment’s notice.
- Security Awareness Training & Testing: The entire team participated in ongoing training to identify cyber threats, ensuring vigilance at every level of the organization.
- Managed Backup & Recovery – We migrated the brokerage to our proven backup solution, ensuring their critical data remained protected and easily restorable in a crisis. We continuously monitor and maintain backups to ensure they remain reliable and ready for quick recovery.
The Malware Attack
Shortly after upgrading their security, the brokerage’s defenses were put to the test. A remote user was assembling a commercial insurance quote and unknowingly downloaded a malware-infected PDF from the internet. When the user attempted to open the PDF, the malware was activated, and it tried to make unauthorized changes to the computer to gain deeper access and create footholds inside the brokerage’s IT.
Because the user’s device was protected by Managed Detection & Response (MDR), the system automatically identified the suspicious activity and stopped the malware from running. The alert was immediately sent to Aldridge’s Security Operations Center (SOC) for investigation.
Aldridge’s team used the SIEM tool to reconstruct the attack timeline and assess its impact. The investigation confirmed that only one device had been affected, and no other systems were compromised.
Aldridge Response
- Within 10 minutes: The SOC team correlated the security events and began investigating the threat.
- Within 30 minutes: The incident was escalated to Aldridge’s security team with a complete security summary.
- Within 50 minutes: The affected workstation was isolated from the network to prevent further spread.
- Within 2 hours: After speaking with the user and reviewing the full story, Aldridge confirmed it was an isolated incident. The workstation was restored, and the user returned to work with no disruption.
Thanks to their preparation and commitment to best practices, the Insurance Brokerage turned a potentially devastating malware attack into a non-event. There was no data loss, downtime, or lasting impact on their business.
Where The Brokerage Is Today
Today, the brokerage remains a valued Aldridge client. The malware incident served as a powerful reminder of the value of proactive security and their partnership with Aldridge. As the brokerage’s business has grown and evolved, Aldridge has continuously adapted its services to meet their changing needs—offering comprehensive security consulting, 24/7 monitoring, and innovative solutions. This tailored approach ensures the brokerage remains secure while empowering them to achieve their strategic goals.
Cyber threats are constantly evolving. Like the insurance brokerage, proactive defense and preparation are key. Learn how Aldridge’s Secure IT Outsourcing or Co-Managed IT services can help you stay ahead of emerging risks and keep your business secure and thriving.
