UB3.C4.K1 – Users contract and use non-secure ISP

The Internet Service Provider (ISP) our users choose plays a critical role in safeguarding our data and assets. While many people focus on speed, reliability, and cost when selecting an ISP, one often overlooked factor is the provider’s commitment to security. The choice between a secure ISP and a ISP which not invest in security controls (which I will mention them as risky ISP) can significantly affect your data privacy, the integrity of your devices, and your overall cybersecurity posture.

Why Security in an ISP Matters

ChatGPT, security by Switzerland ISP providers
  • Case 1 : ISP using multiple different IPs trying to sign-in on my tenant, with 0 successful sign-in attempts. This provides me with useful information, such as potential IPs to be added as Indicators of Compromise (IOCs) in my Threat Intelligence platform, and allows me to monitor future activities from IPs associated with this ISP.
  • Case 2: ISP using multiple different IPs to attempt sign-ins on my tenant, with some successful sign-in attempts. In addition, to the case mentioned above, it help me to identify potential accounts compromised by a Risk ISP due to the high number of attempts which could indicate, for example, a brute-force attack.