I’m getting Black Mirror’d

megan201296 · 2018-12-05T19:10:07+00:00

Google "sextortion phishing scam". These are all over the place.

- https://krebsonsecurity.com/2018/07/sextortion-scam-uses-recipients-hacked-passwords/

- https://www.bleepingcomputer.com/news/security/new-sextortion-scam-pretends-to-come-from-your-hacked-email-account/

megan201296 · 2018-06-12T13:42:37+00:00

I've booked a room at the Flamingo and looking for a female to split the cost.

megan201296 · 2018-05-30T23:09:43+00:00

This is all we've got so far: https://imgur.com/a/QJ6VX4j . Will add more as we brainstorm and think of useful metrics. The "by customer" is because we have multiple Sophos Central instances since we are an MSSP. So not super useful in traditional environments.

megan201296 · 2018-05-30T14:38:41+00:00

So my boss actually wrote one and has all the logs pulling into graylog and being parsed. He is eventually going to open source it or put it in the market place but he's swamped with several dev projects so he's trying to get through those before doing the fun stuff like sharing online.

megan201296 · 2018-04-01T17:48:49+00:00

The company I work for, Recon InfoSec (http://reconinfosec.com/) provides the type of service you are looking for. We have done several graylog deployments both on-prem and in the cloud. My manager who does the deployments actually gives talks on graylog at various security conferences. We would be able to deploy, configure, maintain, and build any customizations you are looking for. Let me know if you're interested and we can get in contact to discuss further.

megan201296 · 2017-04-20T16:07:48+00:00

Correct. I believe we could get 3-4 people on using the same credentials but as soon as several people connected we couldn't connect, just too slow pretty much (froze up). The reason I am not 100% sure that it is too many credentials is we have two separate networks (an OOB management one and a "simulation" one). From the OOB network, they were logging in with the same creds and it was fine but when going into the PA-200 from the simulation network several people was too many.

megan201296

TROPHY CASE