Crédit Agricole Personal Finance & Mobility

Challenge

1. Crédit Agricole Personal Finance & Mobility is composed of many subsidiaries, maintaining visibility of a fragmented and dynamic attack surface with over 100 different technologies that left potential blindspots for threat actors to exploit.
2. The development of new exploits that could target unmonitored assets or shadow IT posed a constant threat to Crédit Agricole PFM. Responding quickly to these ever-evolving threats was a priority.
3. Without centralized visibility of risks it was challenging to correctly prioritize remediation efforts and ensure that the low-risk issues did not consume resources needed to resolve critical risks in a timely manner.

Solution

• Crédit Agricole PFM now has a full map of their attack surface.. Hadrian allows them to identify and track all 5,000+ assets, including servers and public-facing network devices in real-time. Role-based access controls provide 15 teams with different levels of visibility to proactively secure their assigned assets.
• Shadow IT and hidden assets, often missed by traditional discovery tools, are now managed by the security team. Real-time vulnerability detection allows Crédit Agricole PFM to respond quickly to zero-day exploits and improve compliance with security standards.
• Vulnerabilities are monitored from a centralized source of truth and are categorized based on their risk levels, allowing the Crédit Agricole PFM to prioritize and address critical threats swiftly.

Outcome

Enhanced Asset Management

Crédit Agricole Personal Finance & Mobility is a part of the larger Crédit Agricole Group and has many sub-brands of its own. As a result, the attack surface is complex and interwoven with different entities sharing infrastructure, resources, and customer bases. Identifying and maintaining an inventory of all of the assets was necessary in order to prevent blindspots from being exploited.

Hadrian’s dynamic asset discovery enables Crédit Agricole PFM to monitor over 5,000 assets in their attack surface in real-time. Hadrian’s platform utilizes ML-algorithms to build a unique fingerprint of Crédit Agricole PFM digital assets and continuously scans the internet for servers and public-facing network devices belonging to them. 

All of Crédit Agricole PFM’s assets are centralized into an easily analyzable and exportable inventory. The Technology view provided by Hadrian, maps Credit Agricole PFM’s exposed assets including over 100 different technologies. Hadrian’s role-based access control enables precise management of what different teams can view and do. Credit Agricole PFM has 15 teams assigned across their devisions with different levels of access to the attack surface.

{{quote-1}}

Rapid Exposure Remediation

As a financial services provider, Crédit Agricole PFM must maintain a strong security posture in order to mitigate threats and comply with regulations such as DORA. Being able to quickly test exposed assets to determine if new vulnerabilities are exploitable is essential for Crédit Agricole PFM to respond rapidly.

Hadrian’s automated penetration testing capabilities eliminated Crédit Agricole PFM’s need to manually test their attack surface for zero-day vulnerabilities. Hadrian in-house ethical team update the platform daily to identify emerging threats and alert Crédit Agricole PFM of any issues that require remediation. 

New risk assessments are triggered by Hadrian’s event-based architecture whenever Crédit Agricole PFM’s attack surface changes, ensuring that the security team is notified and can respond rapidly. Hadrian’s detection capabilities include OWASP issues, cloud misconfigurations, and many other types of threat for comprehensive coverage.

Centralized Risk Management

With thousands of digital assets Crédit Agricole PFM was inundated with security alerts, many of which were theoretical and could not be exploited. This necessitated triaging to remove false positives and correctly categorize the severity of risks. Manual triage is a time consuming task requiring security personnel to continuously clear the backlog.

Hadrian automatically verifies risks before alerting security teams, ensuring true exploitable issues are prioritized. Theoretical risks are filtered into a separate section of the platform, providing Crédit Agricole PFM with visibility without creating overwhelming numbers of alerts.

Hadrian uses a context-driven approach to score the severity of risks. The active exploitation of the vulnerability, the asset importance to Crédit Agricole PFM, and the technical risk are all considered during the calculation. For example, risks impacting point of sale system or e-commerce platform are factors that would result in higher severity scores. Context-driven score focuses the remediation activity at Crédit Agricole PFM so that the most critical risks are resolved first.

{{quote-2}}