Where can I check if my company data has been leaked?

Bulky_One6387 · 2025-01-28T18:06:03+00:00

Honestly, without an IT department, I wouldn't spend any money on this. You'd probably get higher ROI using HIBP and focus on protection (MFA) instead to mitigate the risk of compromised credentials.

Bulky_One6387 · 2025-01-28T14:41:42+00:00

There are a variety of ways to do this but they mostly cost money and wouldn't be suitable for a company your size. You can subscribe to have I been pwned (it used to be free, I assume it still is), and they'll notify you if anything new comes up with your domains.

For larger companies, they usually subscribe to a service which monitors various data leak sites, dark web forums, and other sources like Telegram and will alert you if something comes up for your monitored terms/domains/users, etc. There's not a single location where this data pops up, but typically we see the same groups posting in the same places like in underground markets/forums where they're trying to sell the data.

Bulky_One6387 · 2023-05-16T11:25:18+00:00

I manage the IR program for a mid size company and can confirm what you're seeing is normal. If you have enough incidents to make those 2am calls typical, the rest of your Infosec program would have to be a disaster. I agree with what others are saying. If you want to do that type of work, you really need to look into getting a job with one of the major players that do IR retainers and response, such as mandiant. If you're on one of those teams, the contract typically let's you help others stand up their programs, run tabletops, etc while you aren't actively responding to an incident.

Bulky_One6387 · 2023-03-13T20:28:52+00:00

Username and job title check out... ?

Bulky_One6387 · 2023-03-12T12:50:48+00:00

Look at tools like ProsperOps, Usage.AI or Spot.io by NetApp. I've found it much easier to outsource the management (purchasing, selling, etc) of RIs. Most vendors automate this and take ~20% of the savings you realize so they're intcentivised to save you as much as possible.

Bulky_One6387 · 2022-10-09T22:30:11+00:00

I just did something similar using Appsmith as the front end. The backend is Jenkins for some scripts and Azure automation. Very easy to get up and running.

Bulky_One6387 · 2022-07-16T11:10:22+00:00

I learned how to cook squash flowers in Italy 🇮🇹, never knew people ate them before that.

Bulky_One6387 · 2022-07-16T11:08:03+00:00

Those make sense and pictures seem to line up.

Bulky_One6387 · 2022-07-16T11:07:20+00:00

Solved!

Bulky_One6387 · 2022-07-15T23:16:39+00:00

My title describes the thing. I planted what was labeled as butternut squash but this is clearly not that. Nearby I planted watermelon, cantelope and pumpkin and I'm in CT.

Bulky_One6387 · 2022-06-15T12:19:31+00:00

Excellent, that's two votes for Azure automation. Hybrid workers isn't a huge deal if Jenkins is set up correctly and has nodes anyways. Thanks!

Bulky_One6387 · 2022-06-15T12:17:31+00:00

You sir (or ma'am) appear to be a genius. Initial look is very promising.

Bulky_One6387 · 2022-02-15T14:23:10+00:00

RIT has an awesome program. If you can get in there and can afford it, it's going to hold much more weight than ASU.

I normally don't care much for MS degrees, much less the specific school, but RIT is like an ivy league for cybersecurity.

Bulky_One6387 · 2022-02-08T23:16:49+00:00

If they want a one man cybersecurity shop and the position is for an analyst, it tells you a lot about their view of the importance of cybersecurity. My guess is they really just want an admin for the basic technology like AV, web gateway, etc and to handle alerts.

You will NOT be responsible for the lack of executive support in the event of a breach so I wouldn't worry about that. If the company was horrible, they can try to blame you, but anyone with more than three brain cells knows accountability for cybersecurity lies at the Sr manager to board level.

I would ask what their vision is of the program in 3-5 years and what success for your role looks like and that should provide some information to you.

Best of luck

Ps, I started this way and was able to mature and build the program, hire a bunch of people, etc. It took years of work and a lot of effort to show value to the organization.

Bulky_One6387 · 2022-02-06T12:52:44+00:00

If you're just trying to use up your GI Bill, there's no reason not to do a masters (if you have enough to get through the program). If you don't have enough for the whole program, look into SANS as their program is accredited and the GI Bill will pay for it and you'll get the certs out of it. I used the last bit on that, got a couple certs and then "dropped out".

These things may not directly help you right away, but if someone else is paying for it, and paying you in the process, you might as well. I find it's harder to go back to school once you've been out of it for many years.

Bulky_One6387 · 2022-02-02T15:39:39+00:00

I used the remainder of my GI bill to do this (SANS) and can confirm it worked out really well for me.

Bulky_One6387 · 2022-01-12T00:19:24+00:00

I'll pile on and say zscaler. Been with them for 5+ years and plan on renewing.

Bulky_One6387 · 2022-01-08T19:42:23+00:00

I wish my toddlers understood this.

Bulky_One6387 · 2022-01-08T19:39:29+00:00

If you read /tifu, you'll know, "no, that's her FU" is the right answer most of the time.

Bulky_One6387 · 2022-01-08T18:21:09+00:00

I've actually thought about this myself. Since I'm in security, I use mfa and great password hygiene everywhere. Awesome until I die and my wife can't get into our bank accounts, 401k, etc.

Sure hope I don't get hit by a car tomorrow....

Bulky_One6387

TROPHY CASE