|
Most of Garmin services are coming back online. Pretty decent chance they paid the $10m or a negotiated amount. https://twitter.com/BleepinComputer/status/1287805598801768450
|
# ? Jul 27, 2020 18:46 |
|
|
# ? Mar 29, 2024 06:16 |
|
I want to know how/why they couldn't restore from an off-site backup
|
# ? Jul 27, 2020 18:54 |
|
taqueso posted:I want to know how/why they couldn't restore from an off-site backup Yeah, that's what I want to know: A good cold archive or off-site backup is the only ace card if you get ransomwared. So either they paid, and we'll likely eventually find out either from them or the attackers, or they had a good backup and the time taken was just restoration.
|
# ? Jul 27, 2020 18:59 |
|
https://careers-us.garmin.com/us/en/job/20000RV/Cyber-Security-Engineer-2-Endpoint
|
# ? Jul 27, 2020 19:03 |
|
Holy gently caress they pay 57k a year for this?
|
# ? Jul 27, 2020 19:05 |
|
Biowarfare posted:Holy gently caress they pay 57k a year for this? Well, that explains a lot. Wonder if they have a dedicated DR plan that is annually tested....
|
# ? Jul 27, 2020 19:12 |
|
Biowarfare posted:Holy gently caress they pay 57k a year for this? It costs about $20 and a six-pack in rent to live in the area, so it's not that wild.
|
# ? Jul 27, 2020 19:44 |
|
Biowarfare posted:Holy gently caress they pay 57k a year for this? Just curious where you're seeing the salary figure? Or did they change the listing.
|
# ? Jul 27, 2020 19:47 |
|
Sirotan posted:Just curious where you're seeing the salary figure? Or did they change the listing. Glassdoor, probably.
|
# ? Jul 27, 2020 19:48 |
|
Sickening posted:Glassdoor, probably. Ah, yeah.
|
# ? Jul 27, 2020 19:52 |
|
E: answered already
|
# ? Jul 27, 2020 20:04 |
|
Volmarias posted:It costs about $20 and a six-pack in rent to live in the area, so it's not that wild. Sec Engineer II is more like a guy who might be married and may possibly have kids (lol not in this economy), so that's chicken scratch.
|
# ? Jul 27, 2020 20:16 |
|
Volmarias posted:It costs about $20 and a six-pack in rent to live in the area, so it's not that wild. Median household income for the area is 87k. I assure you, the incomes for the area directly surrounding the area are the ones on the upper end of the city/county curve.
|
# ? Jul 28, 2020 05:45 |
|
CommieGIR posted:Sec Engineer II is more like a guy who might be married and may possibly have kids (lol not in this economy), so that's chicken scratch. Sec Engineer II also might be a late-20s queer trans person these days. To keep them living in Kansas, a state that has become unrepentantly MAGA and hostile to their mental health, probably costs a substantial bonus.
|
# ? Jul 28, 2020 13:35 |
|
Klyith posted:Sec Engineer II also might be a late-20s queer trans person these days. To keep them living in Kansas, a state that has become unrepentantly MAGA and hostile to their mental health, probably costs a substantial bonus. ALSO this, yes.
|
# ? Jul 28, 2020 14:40 |
|
AlternateAccount posted:Median household income for the area is 87k. I assure you, the incomes for the area directly surrounding the area are the ones on the upper end of the city/county curve. Sure, but the cost of living is still low compared to the Bay Area or New York.
|
# ? Jul 28, 2020 14:41 |
|
Volmarias posted:Sure, but the cost of living is still low compared to the Bay Area or New York. The cost of living is cheaper than the most inflated cost of living areas we have? crazy.
|
# ? Jul 28, 2020 14:43 |
|
CommieGIR posted:Wonder if they have a dedicated DR plan that is annually tested.... taqueso posted:I want to know how/why they couldn't restore from an off-site backup You guys know the answers to this c'mon
|
# ? Jul 28, 2020 14:47 |
|
Martytoof posted:You guys know the answers to this c'mon We do, but professionalism demands we have some suspension of disbelief
|
# ? Jul 28, 2020 15:11 |
|
CommieGIR posted:We do, but professionalism demands we have some suspension of disbelief P sure professionalism demands we take off our glasses, put our fingers on the bridge of our nose, sigh, and get out the bottle of scotch
|
# ? Jul 28, 2020 17:17 |
|
Once upon a time I worked with a vendor who, with a straight face, told me that while they did backups it wasn’t in scope to test them because they didn’t have enough hardware to do a test restore. Somehow they were surprised when this didn’t fly. https://www.youtube.com/watch?v=QblkQ-J6zio
|
# ? Jul 28, 2020 17:29 |
|
Volmarias posted:Sure, but the cost of living is still low compared to the Bay Area or New York. There are 3141 counties in the US. Johnson County, KS is the 81st for median income. That's two spots below Orange County, CA, and a whole lot higher in the list if you exclude the bay area, NYC, or anywhere within commute distance of DC. $57k is basically the bare minimum to live here as a single person in some comfort. I am 99.9% confident that glassdoor's estimate is off. Probably by 50-100%.
|
# ? Jul 28, 2020 17:47 |
|
Martytoof posted:Once upon a time I worked with a vendor who, with a straight face, told me that while they did backups it wasn’t in scope to test them because they didn’t have enough hardware to do a test restore. Somehow they were surprised when this didn’t fly. I've worked in a few data centers that never tested killing the power to see if the generator would kick on. "Do you know how expensive that is to test?" Not as expensive as updating my resume.
|
# ? Jul 28, 2020 19:30 |
|
RFC2324 posted:P sure professionalism demands we take off our glasses, put our fingers on the bridge of our nose, sigh, and get out the bottle of scotch And bill for the hours.
|
# ? Jul 28, 2020 19:59 |
|
In an interview with a candidate today, when asked what SEIM tool he is currently using he said he is using one they created in house. A company of 800 people designed their own SEIM tool. He is either lying his rear end off because he couldn't think of one or there are small companies out there they make their own.
|
# ? Jul 28, 2020 20:33 |
|
Sickening posted:He is either lying his rear end off because he couldn't think of one or there are small companies out there they make their own. It may not be so preposterous. My company took one of our own products we developed for sat-com purposes and has a reoccurring project which we have an intern and a full time engineer transform it from a sat-com monitoring software into a gen use network monitoring software. We're currently dog fooding it and I don't know if it would have been better to have just forked out the money for solar winds or something, but I guess it gave the intern something to do. I mean, what is a siem but basically a collection depot for a bunch of your logs right?* *I have never worked with a siem, don't hurt me.
|
# ? Jul 28, 2020 20:41 |
|
we made our own, its a 3-ring binder
|
# ? Jul 28, 2020 20:43 |
|
taqueso posted:we made our own, its a 3-ring binder every day you print out all your logs and put them in the binder
|
# ? Jul 28, 2020 20:50 |
|
Defenestrategy posted:It may not be so preposterous. My company took one of our own products we developed for sat-com purposes and has a reoccurring project which we have an intern and a full time engineer transform it from a sat-com monitoring software into a gen use network monitoring software. We're currently dog fooding it and I don't know if it would have been better to have just forked out the money for solar winds or something, but I guess it gave the intern something to do. I mean, theoretically there are a bunch of analysis, alerting and reporting tools built into it as well. e: But I could totally see a small company sending a bunch of logs to sql and using ssrs and calling it an in house siem.
|
# ? Jul 28, 2020 20:50 |
|
Defenestrategy posted:I mean, what is a siem but basically a collection depot for a bunch of your logs right?* But enough false positives. Have at you!
|
# ? Jul 28, 2020 20:53 |
|
RFC2324 posted:every day you print out all your logs and put them in the binder every day someone remembers to do it anyway
|
# ? Jul 28, 2020 20:55 |
|
Select * from logs where rawlog = ‘%HACK%’ *dusts hands* well my work here is done I’ve been meaning to play with Apache Metron for like two years now and just have never gotten off my rear end to finish an actual install. I always get to the part where I have to compile something or other by hand but then something at work explodes and I’m distracted by my actual job.
|
# ? Jul 28, 2020 20:57 |
|
The Fool posted:I mean, theoretically there are a bunch of analysis, alerting and reporting tools built into it as well. Wouldn't that just be graylog?
|
# ? Jul 28, 2020 21:17 |
|
You can make an "SEIM tool" by hiring a low-level tech, assigning them to poke through reports from endpoint security software, and telling them to log anything that looks weird into a shared Excel doc. It won't do much good, but that kind of setup is a lot more common in 800-person companies than a full Splunk system.
|
# ? Jul 28, 2020 21:18 |
|
Defenestrategy posted:Wouldn't that just be graylog? Gray log is a cool and good implementation of elastic search, fight me.
|
# ? Jul 28, 2020 21:39 |
|
taqueso posted:I want to know how/why they couldn't restore from an off-site backup lmao
|
# ? Jul 28, 2020 21:54 |
|
The Fool posted:Gray log is a cool and good implementation of elastic search, fight me. I have used greylog in the past and actually liked it a lot.
|
# ? Jul 28, 2020 21:58 |
|
The other piece of a modern SIEM is user and attacker behavior analytics. Rather than just "does this log line look suspicious" you get "this pattern of log lines indicates lateral network movement" or "multi-site auth" etc. Guaranteed they didn't build out that stuff in-house or else they'd be trying to market it.
|
# ? Jul 29, 2020 13:54 |
|
It's probably a lovely MS Access project.
|
# ? Jul 29, 2020 14:16 |
|
|
# ? Mar 29, 2024 06:16 |
|
Mustache Ride posted:It's probably a lovely MS Access project. There's no need to use profanity, you could just say "MS Access project"* *: I workshopped a way to make "MS Access" into the curse but couldn't quite make the line land so this is the response you guys get. Sorry.
|
# ? Jul 29, 2020 14:24 |