Solved

Network intrusion

Posted on 2013-01-08
2
446 Views
Last Modified: 2013-01-08
Hi  - There have been rumours in our office about an employee who apparently has access to the private network from an external location.

Is there any means of discovering evidence of network intrusion from the inside. We are running Windows SBS 2011, Exchange 2010. Running Netgear FVS 124G Firewall.

Where should I start looking?
0
Comment
Question by:paulmac110
2 Comments
 
LVL 37

Accepted Solution

by:
Neil Russell earned 250 total points
ID: 38753832
The most obvious thought when somebody mentions this is the likes of LogMeIn.  If this is installed on a client PC inside your building and is allowed to get out to the internet then yes, the individual can now gain access to that computer from the outside world.

If you know who the individual is then I would start by looking at what software is installed on their work computer.

Also of course there is the posibility that your firewall and server allow RDP connections from the outside world.
0
 
LVL 35

Assisted Solution

by:Ernie Beek
Ernie Beek earned 250 total points
ID: 38753842
Agree, check for software like logmein, teamviewer, etc.
The next step is to monitor the firewall to see what connections are there from the outside to machines on the inside.
If you know who the user is you can check on the server for logins from that user at the moment he/she is not in the office.
0

Featured Post

Save on storage to protect fatherhood memories

You're the dad who has everything. This Father's Day, make sure your family memories are protected. My Passport Ultra has automatic backup and password protection to keep your cherished photos and videos safe. With up to 3TB, you have plenty of room to hold the adventures ahead.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Article by: btan
Provide an easy one stop to quickly get the relevant information on common asked question on Ransomware in Expert Exchange.
A customer recently asked me about anti-malware and the different deployment options available for his business. Daily news about cyberattacks, zero-day vulnerabilities, and companies that suffered a security breach made him wonder if the endpoint a…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.

919 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now