(www.huntress.com)

154 points mellosouls | 5 comments | 09 Sep 25 15:42 UTC | HN request time: 0.506s | source

Show context

s46dxc5r7tv8 ◴[09 Sep 25 16:15 UTC] No.45184165[source]▶

Disturbing that they would be proud enough of spying on their users to post this. Threat intelligence is nearly as bad as the threats themselves. From crowdstrike destroying computer systems to this type of spying on their own users, who wants to trust these people? What happened to holding microsoft accountable for the security of their products?

replies(4): >>45184879 #>>45185444 #>>45185892 #>>45190067 #

1. hunter-gatherer ◴[09 Sep 25 18:05 UTC] No.45185892[source]▶

>>45184165 #

So many of the comments here seem to be completely unaware of what an EDR does. Do none of you all work for companies with managed devices? There isn't anything abnormal here...

I work on a REM team in a SOC for a big finance company all you US people know. An employee can't hardly fart in front of their corporate machine without us knowing about it. How do you all think managed cyber security works?

replies(2): >>45186111 #>>45192632 #

2. mc32 ◴[09 Sep 25 18:17 UTC] No.45186111[source]▶

>>45185892 (TP) #

They might be under the impression that all this activity is looked at by someone for curiosity’s sake -snooping. It isn’t. People only look and discover if there is reason (a critical alert or some legal action). No one goes snooping to see what sites Joe visited this morning for no reason at all.

replies(1): >>45186519 #

3. boston_clone ◴[09 Sep 25 18:36 UTC] No.45186519[source]▶

>>45186111 #

> No one goes snooping to see what sites Joe visited this morning for no reason at all.

In fact, I have worked at several organizations in which this type of activity would be a terminable offense.

replies(1): >>45187205 #

4. ◴[09 Sep 25 19:12 UTC] No.45187205{3}[source]▶

>>45186519 #

5. ◴[10 Sep 25 02:57 UTC] No.45192632[source]▶

>>45185892 (TP) #

↑

An attacker’s blunder gave us a look into their operations