Consolidating Event Monitoring

One of my clients already has SNMP server and Network-wide monitoring. Their problem is that they recently had a conficker malware attack. A lot of this registered on microsoft Domain servers as invalid login attempts. These failed login attempts did not show up on their syslogs. So my task was to find a way to […]