oROEchimaru
Supreme [H]ardness
- Joined
- Jun 1, 2004
- Messages
- 4,662
Hello, after a phishing attempt by a malicious outside user, what are some methods commonly used to locate compromised accounts other than finding users sending massive spam messages? Social engineering/phishing is problematic several industries..
a. any AD utilities to find access from outside countries/ips?
b. Use of stealthwatch, dc logs etc hasn't seemed to bring any data to light.
Often the sample size is 10-200 in the amount of users that clicked the link. Any tips? Thanks!
a. any AD utilities to find access from outside countries/ips?
b. Use of stealthwatch, dc logs etc hasn't seemed to bring any data to light.
Often the sample size is 10-200 in the amount of users that clicked the link. Any tips? Thanks!