EventTracker

Netsurion’s EventTracker SOC reviews billions of logs daily to keep customers safe from cyber attacks.
Check out the latest Catch-of-the-Day.


EDR catches Emotet at MSP’s Healthcare Customer

The Network: A Managed Service Provider (MSP) installed EventTracker Essentials with EDR to mitigate threats on 900 endpoints at a Community Health network in North Eastern United States.

Read more

Managed Service Provider Cures a Global Healthcare Non-Profit

The Network: A managed service provider (MSP) implemented the EventTracker Co-managed SIEM service for a healthcare non-profit. Operating in over 140 countries...

Read more

Website Vulnerability Exposes Financial Firm

The Network: Our customer is a private equity real estate investment organization on the U.S. East Coast with more than $1B assets under management.

Read more

Backup Server Blasted at Marketing Solutions Company

The Network: Our customer is a leading digital marketing solutions company that empowers millions to find apartments and houses for rent.

Read more

Brute Force Attack in the Medical Field

The Network: An association in a specialty medical field is our customer who is dedicated to the highest standards of clinical care through education, research and the formulation of health care policy.

Read more

Emotet Interrupted in Hotel Chain

The Network: A Managed Service Provider (MSP) installed EventTracker SIEM to mitigate threats within a large hotel chain’s system in the Midwest.

Read more

Emotet Malware Ejected

The Network: Our customer is a major grocery chain with more than 150 stores in 22 states across the USA with a well-administered IT network.

Read more

Fox Malware Outfoxed

The Network:  A cloud services provider headquartered in the Washington D.C. metro area served an end customer with EventTracker SIEM who had installed traditional anti-virus...

Read more

Remote Code Execution at Public Facing Website

The Network: A global management consulting firm with locations across the USA and UK. The Expectation: EventTracker Co-Managed SIEM services, advanced endpoint protection, and behavior...

Read more

HTTPS Request Smuggling

The Network: A mid-size financial institution on the U.S. East Coast. Hundreds of devices on the internal network. Redundant network connectivity to the internet; top-of-the-line network equipment.

Read more

HUER Trojan Downloader Quashed

The Network: The end customer of a well-known Managed Services Provider (MSP) who uses EventTracker Co-managed SIEM to deliver value to their clients.

Read more

BootCD Booted off the Network

The Network: A bank holding company in the U.S. Midwest with an extensive IT infrastructure.

Read more

Emotet Caught in a City

The Network: A municipal government serviced by an MSP requested that the EventTracker SIEM sensor be installed on hundreds of monitored endpoints.

Read more

Trickbot Attacks Promotional Products Industry

The Network: The end customer of a well-known Managed Services Provider (MSP) who uses EventTracker Co-managed SIEM to safeguard their customers.

Read more

Bloatware banned from bank

The Network: A bank serving multiple states on the U.S. East Coast with a headquarters and several dozen branch offices; 500+ servers and 2,000+ workstations.

Read more

Nemucod nailed in the network

The Network: A state government agency that performs financial audits of other government departments.

Read more

Bunitu Trojan trapped

The Network: A diversified global financial services company based on the U.S. east coast. Their IT team is supplemented by SIEMphonic, EventTracker’s co-managed

Read more

Adware creates a nuisance at energy company

The Network: A non-profit Electricity Distribution Cooperative serving more than 100,000 members.

Read more

Kovter cropped before doing damage

The Network: A holding company that provides commercial and consumer banking. Their IT team is supplemented by SIEMphonic, EventTracker’s co-managed

Read more

Brute force attack on firewall stopped

The Network: A nonprofit organization in healthcare research. The EventTracker SIEMphonic service supplements their IT team.

Read more

Browser hijacked at a bank

The Network: A holding company that provides commercial and consumer banking. Their IT team is supplemented by SIEMphonic, EventTracker’s co-managed

Read more

Malware at the Domain Controller

The Network: A major nonprofit organization that supplements its team with EventTracker SIEMphonic, our co-managed security solution.

Read more

CCleaner thwarted, TANSTAAFL

The Network: A technology provider with an on-site IT team. The EventTracker SIEMphonic service supplements this team. The Expectation: Robust...

Read more

The Nitol Trojan, caught and killed

The Network: A healthcare services provider on the west coast of the U.S. They use EventTracker’s SIEMphonic service. The Expectation: Robust and up-to-date...

Read more

Exploit caused by a vulnerable browser plugin

The Network: Global fine dining company that operates in over 160 countries. The Expectation: Patch management processes and regular network scans...

Read more

Trojan Detection at a Healthcare Organization

The Network: A healthcare services provider with an on-site security team. The EventTracker SIEMphonic service supplements this team.

Read more

File-less click fraud Trojan

The Network: A financial services firm in the Midwest U.S. with a very well run network security team on site. The...

Read more

Jaff ransomware caught at Georgia-based MSP

The Network: A Georgia-based IT outsourcing and technology services company that provides managed IT solutions to various companies and restaurants. The...

Read more

WannaCry Infects Health Care Provider

The Network: A not-for-profit 501(c)(3) community asset providing healthcare related services in many states in the southeast United States.

Read more

Resort Front Desk – Gateway to Compromise?

The Network: A chain of vacation resorts with several locations in North America. The front desk is supposed to be the

Read more

Phishing Installs Locky Ransomware

he Network: A leading branded merchandise agency with several locations in the U.S. This problem was at a specific location on

Read more

CEO Phishing Through a Word Macro

The Network: A prominent hotel chain with several thousand locations worldwide. This problem was at a specific location on the U.S

Read more

Bitcoin Miner Steals Resources

The Network: A 150-bed hospital in the Caribbean that provides in and outpatient services. The Expectation: IT resources are to be

Read more

Angler EK goes Fishing

The Network: A well regarded private university with nationally ranked academic programs in the U.S. The Expectation: A layered defense from

Read more

Convenience is the Enemy of Security

The Network: A government contractor on the U.S. East Coast with 250+ servers and 100+ workstations. The Expectation: System Administrators are

Read more

The Most Misunderstood Windows Setting of All Time

The Network: A financial services firm headquartered on the U.S. East Coast with several hundred servers and workstations. The Expectation: Temporary

Read more

Illegal Access to Expensive Library Resources

The Network: A mid-sized state university with multiple locations and 30,000 students. The Expectation: The university library subscribes to expensive publications

Read more

Bogus Account Creation as a Backdoor

The Network: A financial firm headquartered in the U.S. East Coast with several hundred servers and workstations. The Expectation: Temporary staff

Read more

VPN from a Coffee Shop

The Network: A well known college system with 35+ locations and 30,000 students. The Expectation: Remote access to data center resources

Read more

Phishing attack via bogus Dropbox Login page

The Network: A financial firm headquartered in the Midwest U.S. with several hundred servers and workstations. The Expectation: Workstations are less

Read more

Brute Force SSH Attack

The Network: An energy cooperative with multiple datacenters and hundreds of servers. The Expectation: The network design is thoughtfully done; servers

Read more

Defrag an SSD, a bad thing?

The Network: U.S. East Coast data center of a nationwide retailer. Its up-to-date equipment includes a significant investment in Solid State

Read more

After-hours Activity is Bad for Business

The Network: A financial institution with operations in multiple states in the USA. The Expectation: Workstations are extensively used at both

Read more

Services Tied to Disabled Account

The Network: A non-profit corporation that operates dozens of hospitals and ancillary care facilities in 17 states. The Expectation: Workstations are

Read more

Browser Hijacking

The Network: A Bank serving multiple states on the U.S. East Coast with a HQ and several dozen branch offices; 500+

Read more

Ransomware Persists

The Network: Central Bank of a nation that sets fiscal policy. There are hundreds of servers and thousands of workstations. They

Read more

Drive by attack using Java

The Network: A financial firm headquartered in the Midwest U.S. with several hundred servers and workstations. The Expectation: Critical data is

Read more

The Clickjacked website

The Network: A high technology provider on the US East Coast with several hundred servers, including internal webservers and a popular

Read more

Vendor-created backdoor

The Network: A multi-state retailer with 100+ stores on the US East Coast; 400+ servers. The Expectation: Business functions require that

Read more

Domain Login Introduces Insecurity

The Network: A business school with 3,000 students in New England; 200+ servers and 500+ workstations. Microsoft Windows is the dominant

Read more

Adware via the IE Toolbar

The Network: A Bank serving multiple states on the US East Coast with an HQ and several dozen branch offices; 500+

Read more

Troubleshooting Causes Trouble

The Network: A manufacturing facility in the US East Coast with 50+ servers and 100+ workstations The Expectation: User logins fire

Read more

Honey I blew up the hard drive

The Network: An Electric Cooperative in the US Midwest with 50+ servers and 100+ workstations The Expectation: All servers have sufficient

Read more

Unexpected USB drive activity

The Network: Midwest US banking institution, hundreds of servers and thousands of workstations The Expectation: All USB storage devices are disabled

Read more

Why HTTPS matters

The Network: A nationwide health insurance provider The Expectation: The health insurance provider uses an antivirus that provides antivirus, anti-phishing and

Read more

The Smartphone Password Update

The Network: Financial institution The Expectation: Providing access to email via personal or company provided smartphones boosts productivity. The Catch: Hundreds

Read more

The long gone Contractor

The Network: Federal government agency The Expectation: Common practice to engage contractors to perform IT related tasks, well established clearance procedure

Read more

The Executive Bully

The Network: HQ location of nationwide retail chain The Expectation: Higher up’s set an example for the rest of us The

Read more

The Remote Access Misconfiguration

The Network: Multi state Electricity provider The Expectation: When IT makes changes, they are done right The Catch: Remote Desktop Protocol

Read more

The Over Confident Tech

The Network: High tech provider of services The Expectation: Users with IT admin skills are more careful than the average user

Read more

The Guest WiFi

The Network: Multi location retail store chain The Expectation: Customers can be provided guest WiFi; it encourages longer stays in-store and

Read more

Exploit of Remote access

The Network: Healthcare organization, dozens of servers, several hundred workstations The Expectation: Lean in house IT staff, supplemented by out sourced

Read more

Honeypot deceives attacker trying to exploit Apache Struts Vulnerability

The Network: A technology provider with an on-site IT team. The EventTracker SIEMphonic service supplements this team. The Expectation: Robust...

Read more

Malware Infection

The Network: US East Coast government contractor, hundreds of servers, hundreds of workstations, multiple locations The Expectation: Up to date leading

Read more