CyCraft’s<\/a> client was about to perform a pre-acquisition due diligence cybersecurity investigation. The client estimated the entire digital forensic investigation would take several months to complete. CyCraft did it in a few days.<\/a> Not only did CyCraft reduce investigation time by over 99 percent but cost and man-hour investment was further reduced by an estimated 95 percent.<\/p>\n Download and read the full white paper.<\/a><\/strong><\/p><\/blockquote>\n Finance, sales, and company culture have always been important factors in any merger and acquisition. However, as the shockwaves of advanced persistent threat activities and cyberattacks spread over more and more news media sites, pre-acquisition technology and cybersecurity due diligence investigations are becoming the standard operating procedure for M&As.<\/p>\n Marriot’s failure to perform a thorough due diligence cybersecurity investigation on its Starwood acquisition in 2016 led to the 2018 data breach that resulted in 28 million USD in expenses<\/a>, the potential compromised movements of US government military and intelligence officers<\/a>, the theft of credit card and passport information on over 300 million guests<\/a>, multiple class action lawsuits, and most recently a £99 million GBP fine<\/a> (over 120 million USD) from the UK’s Information Commissioner’s Office (ICO) for violating British citizens’ privacy rights.<\/p>\n A due diligence cybersecurity investigation could have revealed the remote access trojan and MimiKatz within the compromised Starwood system and would have recommended against storing encrypted data and its keys on the same server.<\/p>\n