Case Study: Lexmark stops advanced phishing and reclaims 40% of SOC time with Abnormal AI

Lexmark Protects Its Cloud-Based Data and Offerings with Behavioral AI

Lexmark, a private provider of cloud-enabled imaging and IoT equipment serving enterprise customers in 170 countries, was hit by advanced phishing-as-a-service attacks that bypassed Microsoft 365 defenses, causing 50–60 account compromises per month, frequent workstation reimages, and thousands of weekly email investigations. To add an API-based layer that would complement M365, Lexmark engaged Abnormal AI and deployed solutions including Inbound Email Security, Account Takeover Protection, AI Security Mailbox, and Email Productivity.

Abnormal AI connected to Lexmark’s Microsoft 365 subscription in minutes and completed initial analysis within two weeks, immediately stopping advanced phishing and account takeovers. The solution reduced phishing incidents from 50–60 per month to zero, reallocated about 40% of analysts’ time to higher-value tasks, saved over 1,000 employee and VIP hours per month (3,076 hours in 90 days), and recorded zero missed attacks or false positives in 30 days.

Lexmark

Bryan S. Willett

Chief Information Security Officer