TRUE STORY: A silent hack turns nasty

A while ago, SYS3 were contacted by a client on the wrong side of an enormously distruptive email hack. The hacker had been sat silently eavesdropping on a private conversation between our client and one of his customers, waiting to pounce.

Here’s the full story:

The customer, “Client A”, happened to go into his Deleted Items to retrieve an old email when he noticed a string of emails sent from his account without his knowledge. The emails were sent to a customer he had recently been chasing for payment of a large overdue invoice. Among these emails was a message informing them of his change of bank details. He contacted the customer to explain that he had been compromised and to ignore the emails that were ‘sent’ from his account but it was too late. The customer had paid the hacker believing he’d settled his invoice.

After a rapid password change, SYS3 ‘s investigations uncovered a forwarder that was set up to an unknown email address, directing all email from Client A’s customer to go to the hacker rather than arriving in Client A’s inbox. A rule was also in place to automatically delete any email sent to Client A’s customer.

Who was at fault?

Client A had been hacked. He’d done something to be compromised and his customer was unknowingly corresponding with the hacker. Should he have to pay again? Client A was still owed the money and after many emails chasing for payment, a sudden bank change would seem a little suspect. Due to the large value of the invoice, was it not worth a phone call to check? Blame aside, the hack caused months of battling by Client A for his money and the same for his client to get his bank to return the original stolen funds.

How did it happen?

Hacks can happen in any number of ways. This one was likely caused by Client A unwittingly entering his email credentials into a website he believed to be the Office 365 Outlook Web App, inadvertently handing a hacker the keys to his inbox. The hacker then trawled for a juicy opportunity and sat silently for days, even weeks, before making his move. He saw the conversation surrounding the invoice heat up to the point where payment was imminent and he pounced. He was sure to keep up a conversation to avoid suspicion and set up a rule to put every email he sent into the Deleted Items to avoid it appearing in the more visited ‘Sent Items’ of Client A’s mailbox.

How can this be avoided?

It’s difficult and it can happen to the best of us. Client A was not completely unaware of the importance of email security. User training and diligence is essential and not difficult to implement when you have the right tools. SYS3 offer a number of services to help you and your staff stay as secure as possible.

The first thing you need to do is find out exactly how susceptible you are already.

What can SYS3 do to help?

Like many others, you’re naturally interested in how well your staff understand the importance of email security and the steps they take to keep your business secure. But how do you go about it?

SYS3 offer a service that will scan your entire email infrastructure to highlight any forwarders or mailbox rules that may be present. How does this help? The first thing hackers do is set up forwarding rules so they can monitor your mailbox.

If you want a more in-depth live security scenario, we can also schedule a phishing test that sends a dummy scam email to all staff. This in turn provides you with a report on who did and did not fall prey to the ‘scam’. You might be one of the very lucky ones and need no user training at all!

Interested in SYS3’s email security tests?
Click here to register your interest.

Let’s have a chat

Whether you want a complete shake-up of your current IT services or an answer to simple question, SYS3 are always happy to help. Contact us today for a free, no obligation chat about your requirements.

  • Simplify your IT
  • Reduce your spending
  • Increase reliability
  • Enjoy no-contract, unrivalled support across Essex and Suffolk

We know moving IT services can be a daunting task but we promise it’s much easier than you think. When you’re ready to talk, we’re here, happy to help

0345 313 1919

Get in touch

    Our Other Services

    Backing up is VITAL!

    Backing up should be everyones top priority. All too often we see businesses decide to start backing up the wrong side of a costly hard drive disaster or data breach.

    With viruses and malware now capable of causing so much, often irreversible, damage, a substantial backup is imperative. If you’re infected with ransomware, a recent backup often the only way to get you back up and running.

    Why offsite backup and not a removable hard drive?

    Preferably both! But never just a hard drive. Why? Hard drives can fail. It’s as simple as that. Ransomware infections can also creep onto hard drives if they’re left plugged into an infected machine. 

    ​SYS3 use the most reliable and intelligent backup solutions on the market to ensure that our customers’ data is kept secure.

    Why buy your hardware from SYS3?

    Years ago, SYS3 started out by building and supplying custom computer hardware. We know our stuff.

    We keep up with the latest in technology so we are able to provide our customers with the best possible equipment without breaking the bank. Whether you need a new server, laptop, printer or network switch, we’ll always provide you with a variety of options and recommendations to suit your business needs.

    The more advanced technology becomes, the more advanced the bad guys become. Gone are the days when attackers were easy to spot in a badly worded email.

    ​Did you know you can get an infection just by hovering your mouse over a dodgy website banner? Worse? Traditional antivirus products cannot protect you against everything.

    ​Human error is still largely responsible for infections and viruses but that doesn’t mean you shouldn’t have the best protection possible to safeguard your employees and ultimately, your business.

    ​Partnered with Heimdal, SYS3 provide market-leading protection that is proactive, not reactive like traditional antivirus.


    Spam email makes up 70% of ALL email traffic across the world and social engineering means scammers can directly target key employees. Is your job title on social media?

    Over 60% of breaches are caused by human error. Are you confident that your staff are fully trained to spot email-borne threats and avoid falling victim?

    How SYS3 can help

    Just one click has the potential to grind your entire business to a halt and generate a costly bill to put right. What makes things worse is that email viruses are now incredibly clever, highly convincing, and can be very difficult to spot.

    ​Our priority is to make sure our customers are supported and protected as much as possible. 99% of our customers have adopted our mail filtering service and it comes highly recommended. It’s the first line of defence and a vital tool.


    Proud To Be Working With