Case Study

How Menlo Security Prevented an Attack on ALYN Woldenberg Family Hospital

November 24, 2025

This case study details how a malicious actor attempted to breach ALYN Hospital using a Word file embedded with ShellExecute Win32 API calls and ActiveX controls. The attack code used frequent loops to trick sandboxes and evade detection.

Menlo Security neutralized the threat not by detecting it, but by reconstructing the file. By copying only the known-safe elements to a new template, Menlo eliminated the hidden payload instantly, proving that isolation is superior to detection for preventing zero-day attacks.

‍

More Resources for You

Menlo Named a Leader and Fast Mover in GigaOm Radar for Secure Enterprise Browsing

On-Demand Webinar

A Candid Conversation on ZTNA: Separating Hype from Reality

[File] Size Doesn’t Matter.

European Utility Giant: Eliminates File-borne Threats to Upload Portals with Menlo Security

International Shipping Company Secures Cloud Infrastructure with Menlo Security

Regional Credit Union Eliminates File-borne Email Threats with Menlo Security

True Type Detection

Real-Time Performance Metrics

A Complete Guide to Content Disarm and Reconstruction (CDR) Technology

Stop Zero-Day Phishing and Malware Attacks

Best Practices to Prevent Data Loss to GenAI

Best Practices to Enable the Safe Use of AI

A "Replacement Browser" Isn't Saving Your Users from Zero-Day Phishing —Part One

On-Demand Webinar

Secure GenAI Inside the Enterprise While You Protect Against Adversarial Use Outside

AI-Powered Proactive Defense Inside the Browser

Menlo Security Last Mile Data Loss Prevention (DLP)

On-Demand Webinar

Beyond Detection: Proactive Protection for Web Downloads and Malicious Links with Menlo Security-on-demand-webinar

How AI Is Shaping the Modern Workspace

What is Browser Security? (Video)

Secure Application Access with Browsing Forensics Video Demo

See Menlo in Action

Make any browser a secure enterprise browser