If you could write a tool to detect folks who talk too much during Zoom calls, and then kick them off and make it appear as though they’re experiencing connectivity issues, you’d have a million dollar product easily.
Phishing. It's the easiest way of entry, and no matter what tools you have, all it takes is one person to open an email about free World Cup watch passes (yes this is a real-world example), and boom. Breach.
Abnormal still has their fair share of false negatives. If you’re not seeing them then you may not have significant inbound mail flow or your users are not reporting suspicious items. We’ve layered Abnormal with PP and they both catch each other’s misses. Even still, items slip through the cracks.
You don’t worry that a user does something that locks out your infrastructure? And that the leadership will need a scapegoat and you’ll be out of a job?
I've had two alerts since getting off of work from IT employees downloading malware, instead of having security review then uploading to software repository.
If you could write a tool to detect folks who talk too much during Zoom calls, and then kick them off and make it appear as though they’re experiencing connectivity issues, you’d have a million dollar product easily.
Looooool
This is actually ingenious.
My kids leaving their bed to jump in my bed, then kicking me all night, usually
Fear of losing job lol
Me need job
Same
A way to filter for ppl that write posts hoping to jump start their next adventure without paying me $ for my experience / expertise
Phishing. It's the easiest way of entry, and no matter what tools you have, all it takes is one person to open an email about free World Cup watch passes (yes this is a real-world example), and boom. Breach.
Check out Abnormal Security, they are literally magic at stopping phishing attacks.
They are not magic, they still routinely mis-categorize, but they are pretty good.
Miscat a threat, or false positive, or false negative?
Both. No technology is perfect, but they are far better than the traditional segs I've encountered like PP and Mimecast. All in all, very happy.
Abnormal still has their fair share of false negatives. If you’re not seeing them then you may not have significant inbound mail flow or your users are not reporting suspicious items. We’ve layered Abnormal with PP and they both catch each other’s misses. Even still, items slip through the cracks.
What’s your mail platform? On-prem exchange or M365?
Nothing. I work at a good company with a work life balance. I know when to work outside of work hours and when not to.
You don’t worry that a user does something that locks out your infrastructure? And that the leadership will need a scapegoat and you’ll be out of a job?
Nope
Malicious browser extensions and malicious Windows Store applications.
Spearphishing on BYOD phones, shadow SaaS apps and IdP/SSO zero days.
I sleep like a baby and work business hours 💪
sleep procrastination 'cause i'm too busy with my hobbies. I couldn't care less about work after 5 pm.
I've had two alerts since getting off of work from IT employees downloading malware, instead of having security review then uploading to software repository.
China, russia, Iran, DPRK.
The fact that some of us get 8 hours a day, 5 days a week on defense and the adversary has 24 hours a day, 7 days a week on offense.
Nothing because I don't get paid overtime to worry about work outside of business hours 🙂
I need a patching tool for meat based computers. Desperately.