How to check if being 'bugged'?

flossy_splodge · 18 May 2010 at 10:23PM

fiddiwebb wrote: »

flossy

the info that is getting out there is very much 'current'

How current is current, are we talking about the same day, a few days?
Will ask for clarification, thanks for focussing my mind.

I presume that all passwords for emails, banks etc if any that may have been stored/used on the stolen computers have been changed?
Hmm, not sure. Will offer this advice and hope they take it.

Is it possible it is an insider in the business who is leaking information?

Absolutely not is the answer to the last question.

flossy_splodge · 18 May 2010 at 10:25PM

cit_k wrote: »

How big a company is it?Tiny!
How many employees?
What sort of data is getting out.Not sure. Will ask.
What sort of steps have been taken already to see where the leak is.

Not many really.
Computer security is not good really.
Kids allowed on work computers in evening and they log into skype, messenger, facebook etc etc.
Personally I feel this is an absolute no no but not my company, kids or equipment!

flossy_splodge · 18 May 2010 at 10:26PM

S0litaire wrote: »

Step 1) Contact bank and change password for your on-line banking (Same with Credit Card companies.)

Step 2) Change *EVERY* password to something totally different (Including passwords to the router) including online email accounts you may want to contact your ISP to change the password to your ISP's email)

Step 3) Check every machine for virus/malware. If paranoid enough Do a complete Wipe and Clean install of every machine that was left in the theft. (it's possible they left 1 machine behind with the malware installed. As that was the only machine they would initially do ALL business via that machine so the crooks get a lot of important info.)

Now into Paranoid territory:

Step 4) Check all fixtures / fittings for evidence of being opened / unscrewed, including land-line phones, if in doubt throw it out.

If electrical fittings have been tampered with get a qualified electrician to check it out (If you or the electrician sees anything suspicious connected to the power supply, don't touch it and call the police.)

and in the best tradition of CrimeWatch:
Please don't have nightmares. Goodnight...^_^

I'll print this off and give it to them to read.
Can only try and help, can't force!
Thanks, some great points.:T

flossy_splodge · 18 May 2010 at 10:28PM

loudcox wrote: »

If this is information that's held in the office, then it's most likely that the stolen computers allowed your wireless network to be compromised, probably because the password was recorded somewhere. So:

- Ensure that you have WPA2 security enabled on the router.

- Change the password for wireless to something long and complicated (a real mix of standard and non-standard characters - see http://www.microsoft.com/protect/fraud/passwords/create.aspx for help).

- Your router should be able to list devices on or recently connected to the network. Do you recognise them all? If they are listed by their MAC address rather than machine name, check this against the valid machines on your network, and if you don't recognise it, ban it from joining the network.

-Change the password on all computer logins as well. Disable or delete any user accounts that are no longer in use.

- Also ensure that day to day work accounts are not set up with Administrator rights. Only login as an admin user when necessary.

- Check any PCs that weren't stolen for things like VNC, LogmeIn. Don't rely on what's in the start menu, check "Add Remove Programs" in the control panel. These are often overlooked because MalwareBytes etc. don't pick them up!

Good luck!

Some excellent thoughts and again I will try and get note taken of them but not always easy.
All work computers were nicked so all current ones are new but server was untouched.
Thanks for all the info. :T

KillerWatt · 19 May 2010 at 12:50AM

flossy_splodge wrote: »

Kids allowed on work computers in evening and they log into skype, messenger, facebook etc etc.

No point in having any security at all then I'm afraid.

flossy_splodge · 19 May 2010 at 1:55PM

KillerWatt wrote: »

No point in having any security at all then I'm afraid.

I sort of agree but not my company or my decision.
Will show them your comments.
Thanks.:o

cit_k · 19 May 2010 at 2:50PM

flossy_splodge wrote: »

Not many really.
Computer security is not good really.
Kids allowed on work computers in evening and they log into skype, messenger, facebook etc etc.
Personally I feel this is an absolute no no but not my company, kids or equipment!

Computers are probably riddled with viruses, malware, root kits etc.

Step 1 - Ban kids.

Sowilo_2 · 19 May 2010 at 4:54PM

flossy-splodge. It seems to me you are :wall:If they are letting the kids play on them then their idea of security is unusual.

buglawton · 19 May 2010 at 9:59PM

If info getting out truly appears to be 'current' then try planting some misinformation and measure when & where it reappears.

Stop using WiFi, get the place LAN wired at least till the source of the leak is found.

closed · 19 May 2010 at 10:08PM

What type of information, prices, quotes, bank balances, gossip? Where is this current information held or discussed, who has access to it now?

What does "out there" mean, to whom, is it speculation/paranoia or known fact?

While bugging/wireless hacking is possible, there is probably a much simpler explanation.

How to check if being 'bugged'?

Comments

Confirm your email address to Create Threads and Reply

🚀 Getting Started

Categories

Is this how you want to be seen?

Get our FREE Weekly email full of deals & guides - and it’s spam-free