Case Study: Softcat PLC stops advanced account takeover attacks and saves time with Abnormal AI

Softcat Stops Advanced Account Takeover Attacks and Saves Time with Abnormal

Softcat PLC, a fast-growing UK IT services and consulting firm protecting 3,400+ mailboxes and handling ~100,000 inbound emails daily, faced sophisticated account takeover (ATO) attacks that were bypassing its Microsoft Exchange Online + SEG defenses. Concerned about employee safety, analyst workload from reported threats, and time wasted on graymail, Softcat sought an API-based, low‑maintenance solution and evaluated vendors before choosing Abnormal AI’s AI-powered inbound email security and account takeover protection.

Abnormal AI deployed its inbound email security, Email Account Takeover Protection, Abuse Mailbox Automation and Email Productivity capabilities to detect ATOs, automate responses to user reports, and move graymail out of employee inboxes. The result: Abnormal AI stopped advanced ATOs from reaching users, delivered zero false positives in 30 days, saved 2,364 employee and VIP hours on graymail in 90 days, and gave analysts about 10 hours back per week—improving security posture and employee productivity without adding management overhead.

Softcat PLC

Mark Overton

Head of Information Security