nanog mailing list archives
Re: Advice requested
From: "K K" <kkadow () gmail com>
Date: Tue, 29 May 2007 15:44:12 -0500
On 5/29/07, Pete Ehlke <pde+nanog () ehlke net> wrote:
On Tue, 2007-05-29 at 08:21 -0700, Matthew Black wrote: What would you do if a major US computer security firm attempted to hack your site's servers and networks? Would you tell the company or let their experts figure it out?
Personally, I would treat it like any other attack. You do have policy and procedures for responding to intrusions and intrusion attempts? convene your CERT, preserve logs, document the time and other costs, contact the law enforcement, your lawyers, and their ISP.
Personally, I would try to find out who at my site- potentially including S-OX, PCI, other auditors, and the Board- contracted for them to do it.
Even if this were a contracted penetration test, you can't go wrong by treating it as if this were an actual hostile attack. If I were conducting a "pen test" and the target had managed to get an FBI case started and convinced ISP to terminate connectivity due to AUP violations, I would have to give them straight A's for their response :) Kevin
Current thread:
- Advice requested Matthew Black (May 29)
- Re: Advice requested J. Oquendo (May 29)
- Re: Advice requested Quinn Kuzmich (May 29)
- Re: Advice requested Randy Bush (May 29)
- Re: Advice requested Brandon Galbraith (May 29)
- Re: Advice requested Donald Stahl (May 29)
- RE: Advice requested michael.dillon (May 29)
- Re: Advice requested Jim Popovitch (May 29)
- Re: Advice requested Pete Ehlke (May 29)
- Re: Advice requested K K (May 29)
- Re: Advice requested Pete Ehlke (May 29)
- Re: Advice requested George Imburgia (May 29)
- Re: Advice requested Jim Popovitch (May 29)
- Re: Advice requested Andre Gironda (May 29)
- Re: Advice requested Roland Dobbins (May 29)
- Re: Advice requested Valdis . Kletnieks (May 29)
- Re: Advice requested Roy (May 29)
- Re: Advice requested Al Iverson (May 29)
- Re: Advice requested Marshall Eubanks (May 29)
- Re: Advice requested Sean Donelan (May 29)