Advice requested

J. Oquendo sil at infiltrated.net
Tue May 29 16:10:51 UTC 2007


Matthew Black wrote:
>
> What would you do if a major US computer security firm
> attempted to hack your site's servers and networks?
> Would you tell the company or let their experts figure
> it out?
>
> matthew black
> network services
> california state university, long beach
>
I'd contact the chiefs of the company in order to assess
what actually happened. Define attack. If its an IP based
attack, would be difficult to prove unless it was ongoing
as spoofing could play a role. It could turn out to be
something as trivial as said company ending up with a
machine they own which was compromised and used as an
attack vector... I've seen it happen to a few companies.

Personally, I would seek out the CSO, Senior IT personnel,
and follow that route.

-- 
====================================================
J. Oquendo
http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x1383A743
echo infiltrated.net|sed 's/^/[email protected]/g' 

"Wise men talk because they have something to say;
fools, because they have to say something." -- Plato


-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 5157 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://mailman.nanog.org/pipermail/nanog/attachments/20070529/11f216a2/attachment.bin>


More information about the NANOG mailing list