Case Study: Unitel cuts attack detection to 10 minutes and prevents outages with OpenText ArcSight

Unitel stops IT attacks and protects its reputation prevents outages with Micro Focus® ArcSight

Unitel, Mongolia’s second-largest mobile carrier with about 1 million mobile subscribers and 120,000 IPTV/VoIP/Internet customers, was suffering recurring service outages and undetected VoIP fraud. With a small security team, the company often took hours (or longer) to diagnose incidents, risking revenue loss and damage to its reputation in a competitive market.

Unitel established a security operations center and deployed Micro Focus ArcSight to centralize logs, correlate events, and block malicious traffic. The changes cut attack identification from two hours to about 10 minutes, enabled fraud blocking within minutes (VoIP brute‑force detected in seconds), reduced manual analysis by roughly 70%, and produced audit-ready reports that demonstrate the value of security spending—improving uptime, reducing losses, and protecting customer trust.

Unitel

Enkhsaikhan Pagva

Manager of the Information Security Unit