Messaging Details

Messaging Security Alert Details - Monday, July 3 2006


	REPORTED
	UserID	Time	Details
	3487	13:06:54	I just got this email that said to log on to the Benefits Portal. When I go there nothing happens. I called Julie Skidowski (x5503) to tell her the page didn’t work. She said she knew nothing about it and to report it. Thanks.
	0121	14:45:12	I got a Benefits Portal SPAM email
	5655	17:32:41	I have an ongoing problem with a 'delivery failed' email from an email that I never sent. i get it every couple of days.

HIGH
Time	Type	Details
10:09:24	Phishing	Suspicious Activity - Domain "apizaco.mx"
11:19:56	Phishing	Suspicious Activity - Domain "acosta.local"
23:59:45	Spam	Traffic Anomaly - > 25% Detected Spam Increase
23:59:49	Virus	Traffic Anomaly - > 10 Infected Messages

MEDIUM
Time	Type	Details
23:59:25	Traffic	Suspicious Activity - > 10 Messages From Same Domain "ebay.com"
23:59:21	Traffic	Suspicious Activity - > 10 Messages From Same Domain - "paypal.com"

LOW
Time	Type	Details
11:13:47	Connectivity	Connectivity Lapse - > 5 minutes DNS Communication Failure

OTHER
Time	Type	Details
23:59:01	Traffic	Traffic Anomaly - User Traffic +10% of Daily Norm - fjenkins
23:59:09	Traffic	Traffic Anomaly - User Traffic +10% of Daily Norm - jbloom
23:59:14	Traffic	Traffic Anomaly - User Traffic +10% of Daily Norm - hrankins
23:59:19	Traffic	Traffic Anomaly - User Traffic +10% of Daily Norm - jscott

Facility Security Alert Details - Monday, July 3 2006


	REPORTED
	UserID	Time	Details
	4025	09:15:13	During routine patrol I noticed unauthorized visitor behind C-building around dumpster. Suspect fled when I contacted him.
	4025	10:24:42	The boxes piled up by the receiving door are still there. Gerry Tompkins asked for them to be removed by last Friday
	1846	13:03:54	I went into the break room to eat lunch today and there was a guy in there setting up a display table to sell things. He said he was Jean's husband and had permission to do it. I guess I don't mind it, but he seemed to really be pressuring employees during their time to relax.
	2516	13:35:09	Visitor with no badge in the halls seemed confused. Sent to Security Desk.

HIGH
Time	Location	Details
04:37:54	West Entry	Activity Outside of Baseline, After Hours - ID 4378
11:34:51	West Entry	Unauthorized Entry, 5 Unsuccessful Entry Attempts - ID 0112
11:37:13	Lobby Main	Unauthorized Entry, 5 Unsuccessful Entry Attempts - ID 0112
17:56:02	Loading Dock 3	Activity Outside of Baseline, After Hours - ID 4378

MEDIUM
Time	Location	Details
10:31:43	Lobby Main	Policy Violation - Door Open > 60 Seconds
10:32:43	Lobby Main	Policy Violation - Door Open > 120 Seconds
10:33:43	Lobby Main	Policy Violation - Door Open > 180 Seconds
10:34:43	Lobby Main	Policy Violation - Door Open > 240 Seconds
10:35:43	Lobby Main	Policy Violation - Door Open > 300 Seconds
10:36:43	Lobby Main	Policy Violation - Door Open > 360 Seconds
10:37:43	Lobby Main	Policy Violation - Door Open > 420 Seconds
14:57:08	West Entry	Traffic Anomaly, > 3 Entries in 30 Seconds - ID 1434
15:31:37	West Entry	Traffic Anomaly, > 5 Entries in 1 Day(s) - ID 0228
16:51:42	Lobby Main	Policy Violation - Door Open > 60 Seconds

LOW
Time	Location	Details
07:56:21	Lobby Main	Traffic Anomaly, Swipe With No Entry - ID 1745
07:56:26	Lobby Main	Traffic Anomaly, Swipe With No Entry - ID 1745
07:56:30	Lobby Main	Traffic Anomaly, Swipe With No Entry - ID 1745
10:11:42	Loading Dock 3	System Error, Connectivity Loss - KEYPAD 13
11:25:56	Loading Dock 3	System Error, Connectivity Loss - KEYPAD 13
13:03:06	Loading Dock 3	System Error, Connectivity Loss - KEYPAD 13
14:45:51	Loading Dock 3	System Error, Connectivity Loss - KEYPAD 13
14:47:24	Loading Dock 3	System Error, Connectivity Loss - KEYPAD 13
16:50:04	Loading Dock 3	System Error, Connectivity Loss - KEYPAD 13
17:43:12	Loading Dock 3	System Error, Connectivity Loss - KEYPAD 13
17:47:13	Loading Dock 3	System Error, Connectivity Loss - KEYPAD 13
17:51:54	Loading Dock 3	System Error, Connectivity Loss - KEYPAD 13

OTHER
Time	Location	Details
08:41:43	Lobby Main	System Message, Battery Check
09:43:12	Lobby Main	System Message, Battery Check
10:04:05	Lobby Main	System Message, Battery Check
12:11:23	Lobby Main	System Message, Battery Check
12:41:56	Lobby Main	System Message, Battery Check
13:01:27	Lobby Main	System Message, Battery Check

Phone Security Alert Details - Monday, July 3 2006


	REPORTED
	UserID	Time	Details
	4956	14:46:23	phone call from “david gary” in IT. wanted to reset my “vpn” (don’t know what that is) and needed my password to reset. I asked some questions about who he was and if I could call back. he gave me a number but when I called back was not him. seemed weird to me.
	1543	15:11:26	Caller was unable to validate employee ID, and acted nervous and suspicious when asked for manager’s name and location
	1485	17:01:54	I always see 'you have voice mail' messages, and my box is always empty - am I doing the vm procedure wrong?

HIGH
Time	Type	Details
02:24:13	Traffic	Suspicious Activity, > 10 Calls in 60 Minutes - 813-386-1998
04:46:21	Traffic	Suspicious Activity, > 5 Unsuccessful Login Attempts - x0227 from 813-386-1998
08:01:23	Traffic	Suspicious Activity, > 75% Phone Tree Saturation - 813-386-1998
14:22:01	Call	Blacklist Number Call - 214-495-2856
14:23:42	Call	Caller ID Blocked - 813-386-1998
22:56:20	Traffic	Suspicious Activity, Call > 30 Minutes After Hours - 813-386-1998

MEDIUM
Time	Type	Details
14:26:16	Call	Caller ID Non-Standard - 813-810-5858

LOW
Time	Type	Details
07:56:21	Traffic	Suspicious Activity, > 5 Extension Connections - 713-495-4658
07:56:26	Traffic	Suspicious Activity, > 25% Phone Tree Saturation - 713-498-8954

OTHER
Time	Type	Details
09:01:01	Traffic	Traffic Anomaly - +25% Inbound Volume Over 60 Minutes
10:01:01	Traffic	Traffic Anomaly - +25% Inbound Volume Over 120 Minutes