Thomas Cock
Corporate Systems Engineer, Varonis
Tom has worked for Varonis for 18 Months, working previously for a large ISP within their Security consultancy arm in various roles covering Vulnerability management, architecture and threat detection. He has a background in SIEM and other Security products.
Here’s the scenario:
- An insider was paid to exfiltrate sensitive organizational data
- To remain uncovered, he takes control on a service account
- Using the service account, he scans company filers for documents with indicating keywords
- Copies matching documents to his PC
- Creates an encrypted ZIP file
- To remain uncovered, he uses the service account to upload the ZIP file to an external Gmail account
Our Clients