https://community.isc2.org/t5/Welcome/RMM-Security/m-p/63299#M2410 <P>You can implement intrusion detection and prevention systems (IDPS) to monitor network traffic and identify any suspicious or unauthorized activities. IDPS can provide valuable insights into potential security breaches.&nbsp;<A href="https://www.myenvoyair.net/" target="_self"><FONT size="1 2 3 4 5 6 7" color="#FFFFFF"><SPAN>My Envoy Air</SPAN></FONT></A></P> Wed, 04 Oct 2023 05:20:48 GMT Danieldale 2023-10-04T05:20:48Z https://community.isc2.org/t5/Welcome/RMM-Security/m-p/63279#M2409 <P>I seek advice on securing and monitoring Remote Monitoring and Management (RMM) services like Kaseya. I had a n experience with an account take over, and the actors used RMM to deploy malware to target systems. The logs only show connection details and no tracking of downlods, patches or updates. Any ideas how to track and log this activity?</P> Mon, 02 Oct 2023 14:44:24 GMT https://community.isc2.org/t5/Welcome/RMM-Security/m-p/63279#M2409 mbsangster 2023-10-02T14:44:24Z https://community.isc2.org/t5/Welcome/RMM-Security/m-p/63299#M2410 <P>You can implement intrusion detection and prevention systems (IDPS) to monitor network traffic and identify any suspicious or unauthorized activities. IDPS can provide valuable insights into potential security breaches.&nbsp;<A href="https://www.myenvoyair.net/" target="_self"><FONT size="1 2 3 4 5 6 7" color="#FFFFFF"><SPAN>My Envoy Air</SPAN></FONT></A></P> Wed, 04 Oct 2023 05:20:48 GMT https://community.isc2.org/t5/Welcome/RMM-Security/m-p/63299#M2410 Danieldale 2023-10-04T05:20:48Z https://community.isc2.org/t5/Welcome/RMM-Security/m-p/63304#M2411 <P>Thanks!</P> Tue, 03 Oct 2023 12:23:47 GMT https://community.isc2.org/t5/Welcome/RMM-Security/m-p/63304#M2411 mbsangster 2023-10-03T12:23:47Z