Case Study: Hacker stings user after lying in wait

Cybersecurity Hacker Case Study

What happens when a hacker gets access to your system and lies in wait?

One such case happened where emails were hacked and the criminal watched in the shadows for 120 days before striking.

In one transaction, the hacker secured a $40,000 payment for just one client breach.

Read more on the hacker’s plan of attack and how OneCloud IT resolved this issue.

The issue

A user’s emails were compromised, however the hacker did not scam the victim straight away. 

The hacker viewed their emails for 120 days – learning their behaviours and accessing their contact lists, understanding how invoices were sent and how much was an appropriate transaction amount. 

Once this knowledge was achieved, the hacker emailed multiple clients, updating them that the company had changed its bank account details and provided a new invoice for the client to pay. 

In one instance, this happened to be a $40,000 payment.

The client then told the company they had paid the new invoice, to which they then discovered that no invoice was sent and no bank details had been changed. 

Once the client and company compared notes and realised the money had left the client’s account, they called the police to start investigating. 

What was done

Once the client discovered their emails were hacked, the below was implemented:

Change your credentials

New username and password: secure passwords should have 12 characters, have a mixture of symbols, number, capital and lowercase letters. Ensure all your passwords are different and keep track of your new passwords. 

Change security question

Without being sure what the hacker was able to access, you need to ensure all account details are changed to reduce the likelihood of the client being hacked again. Avoid questions that could easily be guessed or found online.

Turn on two-step verification

This extra step allows the user to not only reduce the likelihood of being hacked but also reduce the chances of the user being locked out of their account. 

Warn your contacts

Warning your clients provides them the chance to delete any suspicious messages, therefore reducing the chance of them being hacked. 

Also it allows them to avoid invoice notifications, causing them to pay the hacker instead of the users.

Look for signs of trouble

Hackers may have made changes to the user account, allowing them to gain access to your account easier next time or continue to scam people after you’ve taken back control of the account.

Check email signatures, auto-forwarded rules, or any further tips from your email provider.

Look for signs of a computer virus, slowness, pop-up windows, problems shutting down and restarting, or any unfamiliar applications on your device.

Protect yourself for the future

  • Join OneCloud Services
  • Disaster recovery plan for the future
  • Managed IT services
  • Cyber security services
  • Staff training for the future 

The Outcome

After three months, the hacker was found and the money was returned to the user – which is a rare occurrence.

Measures were put in place to reduce the issues happening again.

Sadly the user took a hit in customer reputation and trust.

The downtime resulted in a loss of income.

Contact OneCloud IT Solutions to start work on your cybersecurity and disaster recovery plan today and start future-proofing your business from the inevitable disasters.

Case Study: Improving Business Efficiencies with a Cloud-Based Phone System

We improved the efficiency of our client’s operations, and saved them money with a new cloud-based phone system.

The Problem

Our client, Independent Portable Buildings, had an old phone system (PABX) with limited functionality that no longer suited all their needs, and was costing them a lot of money in monthly bills.

The Issues

IPB needed to upgrade to a new phone system. They wanted a new flexible and scalable solution to suit their current business requirements, as well as their future needs. They indicated that they didn’t want to keep anything in-house anymore and wanted a cloud solution. Additionally, they wanted to reduce their monthly bills.

What we did

  • Sat down and went through exactly what IPB wanted to achieve from a feature and cost perspective
  • Completed a comprehensive bill analysis
  • Created a proposal outlining the solution and costs

Once the client was happy with the proposal we built our plan and executed it.


Firstly we provisioned a new NBN connection. Then we provisioned, configured and installed a new OneCloud PBX solution, utilising their current phone numbers and specific configuration requirements.

Our projects team closely managed the migration from start to finish, to ensure the implementation was successfully implemented quickly and efficiently, and without unnecessary downtime.

We not only migrated them across to new technology with all the features they wanted, but were also able to save them money. Needless to say, the client was very happy.

Case Study: Migrating a large national company to the cloud with no downtime

Our client, MIRAIT Technologies, wanted to make the shift to an Azure-based cloud environment, to ensure a consistent experience for their 160 staff and extensive network of contractors located across Australia.

MIRAIT Technologies Australia is a national telecommunications and ICT infrastructure construction and maintenance provider, operating from five locations across the eastern seaboard. With more than 160 staff and an extensive network of contractors the company found itself with the need to update its I.T. infrastructure.

MIRAIT had on-premise infrastructure centrally located in its head office which was presenting several challenges. The infrastructure was aging and would need investment in both hardware and software to maintain key business applications.

At the same time it was difficult to ensure staff in other locations had a consistent experience since outside of NSW not all infrastructure was available to all locations and link speed and congestion had a negative impact on operations. The centrally-located infrastructure also represented a business risk, both from a security and redundancy viewpoint.

Craig McLaren, Operations Manager for OneCloud IT, says MIRAIT desired a consistent experience for staff no matter where they were located, and wished to have only a single system to support and provide training on. The nature of MIRAIT’s work meant the ability to mobilise their workforce while ensuring they could have the same experience whether they were in the office or working remotely, made a cloud solution the logical choice.

Defining The Solution

McLaren says MIRAIT’s desire to make the shift to an Azure-based cloud environment was complicated by the need to run custom line of business (LOB) applications which were dependent on the on-premises infrastructure.

The solution chosen was a Windows Virtual Desktop (WVD) based in Azure to provide a full desktop experience to staff no matter where they were located. The WVD solution meant users would have a full Windows 10 experience for a seamless transition from their existing desktops, including compatibility with existing software.

OneCloud had to ensure the solution scaled, both in terms of users and performance, and ensuring the various custom apps and security requirements functioned on a Windows 10 Terminal Server.

Shifting data from traditional client-server apps into the cloud also gives businesses a pathway to migrate to a fully SaaS application in the future when the time is right.

The WVD solution gives MIRAIT greater flexibility to scale as the need arises. With an extensive network of contractors working on projects the ability to add and remove users to the systems quickly and deploy WVD to them wherever they are brings enhanced flexibility to business operations.

Testing & Deployment

To test that the system would perform as required and fulfil the functions MIRAIT needed, a User Acceptance Testing (UAT) environment was set up and key users across various departments were used to test and refine the solution.

Once the client signed off on the project OneCloud set up and deployed the production system in just three weeks.

This was achieved without any downtime required from MIRAIT providing an almost seamless transition between the old system and the new Azure-based WVD solution.

Andrew Lutterbeck, Executive General Manager Strategy & Business at MIRAIT was very pleased with the process, stating “We didn’t have a single issue on the first day of launch, from a user base of more than 150 users. It was a very successful implementation,”.