- Project Name:
- EV Charging Cyberattack Incident Investigation
- Project Details:
- Country:
- UK
- Location in Country:
- London
- Start Date:
- 2021-03
- Duration:
- 6 Months
- Professional Resources:
- 3
Business Objectives 
Our Role 
Results - Strengthened password management policies
- Multifactor authentication implemented
- Identification of accountabilities to manage cybersecurity
- Conducting regular risk reviews and threat modelling to better understand the required controls for OT cybersecurity on EV charging infrastructure
- A major EV charging company had a business email compromise by an unauthorized third party. The affected mailboxes were used by adversaries to send outbound emails to third parties some of which had malware attached to them. There was a potential data breach of Personal Identifiable Information (PII) of which could lead to the national regulator imposing millions of GBP in fines. There was also the possibility of compromise of the charging network leading to major reputational and commercial loss.
- Identify potential causes and contributing factors of the compromise to the email system and the security vulnerabilities in legacy digital systems in use by the client. Focus on process and procedural decisions regarding these systems as well as technical factors. Confirm that PII data was not exposed through cross examination of the evidence and make available to regulator. Determine if there was any spillover risk to the EV charging network. Make recommendations to prevent reoccurrence.