Hire a profession security firm to come in and collect evidence. Since you admit to not knowing about security, and the fact that it appears you were compromised seems to confirm this, I would recommend hiring professionals. Nothing you learn from a few minutes in a mailing list is going to help you. Then maybe the people you hire will help put a security policy in place, and explain it to you for continuous management.
M. Dante Mercurio, CCNA, MCSE+I, CCSA Consulting Services Manager Continental Consulting Group, LLC www.ccgsecurity.com <http://www.ccgsecurity.com> [EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]> > -----Original Message----- > From: Kartik Shinde [mailto:[EMAIL PROTECTED]] > Sent: Monday, December 31, 2001 12:06 AM > To: G.Sambasiva Rao; [EMAIL PROTECTED] > Subject: Re: Description"Hacking server" found at usermanager > > > Hi, > > which groups r u talking about ??? do u mean the user groups > in NT server. If its that then getting somethin like "Hackin > Server" in the description area should drive balls outta ur > head..!!!! I think this prank is played by some1 inside ur > organization or else ur machine is > compromised..!!!(internally/externally) > I suggest u maintain thorough logs and trace out the jerk..!! > > Cheers, > Kartik. > > ----- Original Message ----- > From: "G.Sambasiva Rao" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Sent: Saturday, December 22, 2001 8:01 PM > Subject: Description"Hacking server" found at usermanager > > > > > > Hi all, > > > > I am newbie to security.I have found so many groups named with > > diffrent numericals and junk symbols with > description"Hacking server" > > mentioned against all groups.We are using NT 4.0 server and > is there > > any tools help to find the root cause of this.I would > appreciate your > > attention and help. > > > > Thanks in advance. > > > > G.S.Rao > > > > > >
