Emotet Caught in a City

The Network: A municipal government serviced by an MSP requested that the EventTracker SIEM sensor be installed on hundreds of monitored endpoints.

Read more

Bloatware banned from bank

The Network: A bank serving multiple states on the U.S. East Coast with a headquarters and several dozen branch offices; 500+ servers and 2,000+ workstations.

Read more

Nemucod nailed in the network

The Network: A state government agency that performs financial audits of other government departments.

Read more

Bunitu Trojan trapped

The Network: A diversified global financial services company based on the U.S. east coast. Their IT team is supplemented by SIEMphonic, EventTracker’s co-managed

Read more

Adware creates a nuisance at energy company

The Network: A non-profit Electricity Distribution Cooperative serving more than 100,000 members.

Read more

Kovter cropped before doing damage

The Network: A holding company that provides commercial and consumer banking. Their IT team is supplemented by SIEMphonic, EventTracker’s co-managed

Read more

Brute force attack on firewall stopped

The Network: A nonprofit organization in healthcare research. The EventTracker SIEMphonic Enterprise service supplements their IT team.

Read more

Browser hijacked at a bank

The Network: A holding company that provides commercial and consumer banking. Their IT team is supplemented by SIEMphonic, EventTracker’s co-managed

Read more

Malware at the Domain Controller

The Network: A major nonprofit organization that supplements its team with EventTracker SIEMphonic, our co-managed security solution.

Read more

CCleaner thwarted, TANSTAAFL

The Network: A technology provider with an on-site IT team. The EventTracker SIEMphonic Enterprise service supplements this team. The Expectation: Robust...

Read more

The Nitol Trojan, caught and killed

The Network: A healthcare services provider on the west coast of the U.S. They use EventTracker’s SIEMphonic service. The Expectation: Robust and up-to-date...

Read more

Exploit caused by a vulnerable browser plugin

The Network: Global fine dining company that operates in over 160 countries. The Expectation: Patch management processes and regular network scans...

Read more

Trojan Detection at a Healthcare Organization

The Network: A healthcare services provider with an on-site security team. The EventTracker SIEMphonic service supplements this team.

Read more

File-less click fraud Trojan

The Network: A financial services firm in the Midwest U.S. with a very well run network security team on site. The...

Read more

Jaff ransomware caught at Georgia-based MSP

The Network: A Georgia-based IT outsourcing and technology services company that provides managed IT solutions to various companies and restaurants. The...

Read more

WannaCry Infects Health Care Provider

The Network: A not-for-profit 501(c)(3) community asset providing healthcare related services in many states in the southeast United States.

Read more

Resort Front Desk – Gateway to Compromise?

The Network: A chain of vacation resorts with several locations in North America. The front desk is supposed to be the

Read more

Phishing Installs Locky Ransomware

he Network: A leading branded merchandise agency with several locations in the U.S. This problem was at a specific location on

Read more

CEO Phishing Through a Word Macro

The Network: A prominent hotel chain with several thousand locations worldwide. This problem was at a specific location on the U.S

Read more

Bitcoin Miner Steals Resources

The Network: A 150-bed hospital in the Caribbean that provides in and outpatient services. The Expectation: IT resources are to be

Read more

Angler EK goes Fishing

The Network: A well regarded private university with nationally ranked academic programs in the U.S. The Expectation: A layered defense from

Read more

Convenience is the Enemy of Security

The Network: A government contractor on the U.S. East Coast with 250+ servers and 100+ workstations. The Expectation: System Administrators are

Read more

The Most Misunderstood Windows Setting of All Time

The Network: A financial services firm headquartered on the U.S. East Coast with several hundred servers and workstations. The Expectation: Temporary

Read more

Illegal Access to Expensive Library Resources

The Network: A mid-sized state university with multiple locations and 30,000 students. The Expectation: The university library subscribes to expensive publications

Read more

Bogus Account Creation as a Backdoor

The Network: A financial firm headquartered in the U.S. East Coast with several hundred servers and workstations. The Expectation: Temporary staff

Read more

VPN from a Coffee Shop

The Network: A well known college system with 35+ locations and 30,000 students. The Expectation: Remote access to data center resources

Read more

Phishing attack via bogus Dropbox Login page

The Network: A financial firm headquartered in the Midwest U.S. with several hundred servers and workstations. The Expectation: Workstations are less

Read more

Brute Force SSH Attack

The Network: An energy cooperative with multiple datacenters and hundreds of servers. The Expectation: The network design is thoughtfully done; servers

Read more

Defrag an SSD, a bad thing?

The Network: U.S. East Coast data center of a nationwide retailer. Its up-to-date equipment includes a significant investment in Solid State

Read more

After-hours Activity is Bad for Business

The Network: A financial institution with operations in multiple states in the USA. The Expectation: Workstations are extensively used at both

Read more

Services Tied to Disabled Account

The Network: A non-profit corporation that operates dozens of hospitals and ancillary care facilities in 17 states. The Expectation: Workstations are

Read more

Browser Hijacking

The Network: A Bank serving multiple states on the U.S. East Coast with a HQ and several dozen branch offices; 500+

Read more

Ransomware Persists

The Network: Central Bank of a nation that sets fiscal policy. There are hundreds of servers and thousands of workstations. They

Read more

Drive by attack using Java

The Network: A financial firm headquartered in the Midwest U.S. with several hundred servers and workstations. The Expectation: Critical data is

Read more

The Clickjacked website

The Network: A high technology provider on the US East Coast with several hundred servers, including internal webservers and a popular

Read more

Vendor-created backdoor

The Network: A multi-state retailer with 100+ stores on the US East Coast; 400+ servers. The Expectation: Business functions require that

Read more

Domain Login Introduces Insecurity

The Network: A business school with 3,000 students in New England; 200+ servers and 500+ workstations. Microsoft Windows is the dominant

Read more

Adware via the IE Toolbar

The Network: A Bank serving multiple states on the US East Coast with an HQ and several dozen branch offices; 500+

Read more

Troubleshooting Causes Trouble

The Network: A manufacturing facility in the US East Coast with 50+ servers and 100+ workstations The Expectation: User logins fire

Read more

Honey I blew up the hard drive

The Network: An Electric Cooperative in the US Midwest with 50+ servers and 100+ workstations The Expectation: All servers have sufficient

Read more

Unexpected USB drive activity

The Network: Midwest US banking institution, hundreds of servers and thousands of workstations The Expectation: All USB storage devices are disabled

Read more

Why HTTPS matters

The Network: A nationwide health insurance provider The Expectation: The health insurance provider uses an antivirus that provides antivirus, anti-phishing and

Read more

The Smartphone Password Update

The Network: Financial institution The Expectation: Providing access to email via personal or company provided smartphones boosts productivity. The Catch: Hundreds

Read more

The long gone Contractor

The Network: Federal government agency The Expectation: Common practice to engage contractors to perform IT related tasks, well established clearance procedure

Read more

The Executive Bully

The Network: HQ location of nationwide retail chain The Expectation: Higher up’s set an example for the rest of us The

Read more

The Remote Access Misconfiguration

The Network: Multi state Electricity provider The Expectation: When IT makes changes, they are done right The Catch: Remote Desktop Protocol

Read more

The Over Confident Tech

The Network: High tech provider of services The Expectation: Users with IT admin skills are more careful than the average user

Read more

The Guest WiFi

The Network: Multi location retail store chain The Expectation: Customers can be provided guest WiFi; it encourages longer stays in-store and

Read more

Exploit of Remote access

The Network: Healthcare organization, dozens of servers, several hundred workstations The Expectation: Lean in house IT staff, supplemented by out sourced

Read more

Honeypot deceives attacker trying to exploit Apache Struts Vulnerability

The Network: A technology provider with an on-site IT team. The EventTracker SIEMphonic Enterprise service supplements this team. The Expectation: Robust...

Read more

Malware Infection

The Network: US East Coast government contractor, hundreds of servers, hundreds of workstations, multiple locations The Expectation: Up to date leading

Read more