Warning

 

Close
Confirm Action

Are you sure you wish to do this?

Cancel Confirm
22792 Online
bravocompany bravocompany bravocompany
brownells brownells
tnvc tnvc tnvc
AR15.COM
bravocompany
My Account
bravocompany bravocompany bravocompany
brownells brownells
tnvc tnvc tnvc
palmetto
fightlite
brownells
cz
colt
vortex
Guns
magpul
RS
GS
JRH
primaryArms
bravocompany
aim
geissele
Holosun
midwest
DFC
OSIGHT
skd
silencerShop
springfield
22792 Online
aim
DFC
JRH
fightlite
palmetto
springfield
OSIGHT
brownells
bravocompany
Guns
cz
skd
RS
colt
Holosun
GS
primaryArms
midwest
magpul
silencerShop
vortex
geissele
Site News Could You Have Stopped This? Vegas Shooting Analysis with Attorneys on Retainer
1/18/2007 11:36:23 AM EDT
I'm a data security guy for a large credit card processing company.

Not as cool as a cop thread, but who knows?

Ask away!
1/18/2007 11:40:24 AM EDT
[#1]
What event correlation/analysis tools do you use to monitor your infrastructure?
1/18/2007 11:40:50 AM EDT
[#2]
Why do all your databases get hacked?

Just heard last night that TJ Maxx's got hacked (and noticed in mid-December)...

I don't know if it's just that it's being reported more but why do ID thieves seem to have such an easy time of it???
1/18/2007 11:41:24 AM EDT
[#3]

Quoted:
What event correlation/analysis tools do you use to monitor your infrastructure?



I can't answer those types of questions
1/18/2007 11:44:52 AM EDT
[#4]
What are the IP addresses and root passwords of your DB servers?
1/18/2007 11:47:22 AM EDT
[#5]

Quoted:

Quoted:
What event correlation/analysis tools do you use to monitor your infrastructure?



I can't answer those types of questions


Nagios?

Could you please draw us a detailed topology of your network complete with IPs?

On a serious note: What is the most common OS compromised on your network and what is the most common type of attack you see?
1/18/2007 11:48:07 AM EDT
[#6]

Quoted:
Why do all your databases get hacked?

Just heard last night that TJ Maxx's got hacked (and noticed in mid-December)...

I don't know if it's just that it's being reported more but why do ID thieves seem to have such an easy time of it???


People are unaware of exploits or too trusting to be on the Internet.

Grandma gets an email from Blahblah Bank and Trust saying her account is about to expire if she doesn't login. She clicks on the link, logs in with her valid credentials, boom, thieves have the goods.

Joe Bloe never bothers to patch his machine, because he doesn't know to or doesn't care to. So one day Joe is surfing teh pr0n and silently a keylogger is installed on his machine and it's just a matter of time before he logs into something worth stealing.
1/18/2007 11:48:38 AM EDT
[#7]
How is they pay in that field, I am graduating in April with a BS in MIS and might be in the market.
1/18/2007 11:49:36 AM EDT
[#8]

Quoted:

Quoted:

Quoted:
What event correlation/analysis tools do you use to monitor your infrastructure?



I can't answer those types of questions


Nagios?

Could you please draw us a detailed topology of your network complete with IPs?

On a serious note: What is the most common OS compromised on your network and what is the most common type of attack you see?


No compromises so far

Most common attack? DoS, email viruses/trojans
1/18/2007 11:52:08 AM EDT
[#9]

Quoted:
How is they pay in that field, I am graduating in April with a BS in MIS and might be in the market.


Depends on location and gig. Some places are 50k a year, and i have a friend working for ISS making 150k+ a year.

(I make more than 50k a year )
1/18/2007 11:52:29 AM EDT
[#10]

Quoted:
What are the IP addresses and root passwords of your DB servers?


tsk tsk, you should know their DB servers are going to be isolated behind a DMZ....
1/18/2007 11:57:58 AM EDT
[#11]

Quoted:

Quoted:
How is they pay in that field, I am graduating in April with a BS in MIS and might be in the market.


Depends on location and gig. Some places are 50k a year, and i have a friend working for ISS making 150k+ a year.

(I make more than 50k a year )


Which brings me to my next question, where are you located and are you hiring?
1/18/2007 11:58:53 AM EDT
[#12]

Quoted:
I'm a data security guy for a large credit card processing company.

Not as cool as a cop thread, but who knows?

Ask away!


Do you use neural networks to detect / flag anomalous charges?
1/18/2007 11:59:45 AM EDT
[#13]

Quoted:

Quoted:
I'm a data security guy for a large credit card processing company.

Not as cool as a cop thread, but who knows?

Ask away!


Do you use neural networks to detect / flag anomalous charges?


I can't answer infrastructure questions.
1/18/2007 12:05:29 PM EDT
[#14]
This is getting old guys..... 8.) Posting repeat topics with similar or slightly varying titles. While it may seem to be funny, the "spamming" of the community in this manner results in problems for users and management. (Multiple topics on important iss
SAS
springfield
palmetto
Pro2A
silencerShop
THBRD
blackhills
CA
brownells
LAPG
ar15com
colt
RS
fightlite
bravocompany
Faxxon
cmmg
LAPG
primaryArms
ar15com
ar15com
gray