False alarms

People who hire network security auditing companies to do penetration testing on their networks really shouldn’t report every firewall alert they get without first checking to see if it was caused by the people they hired. I’ve been dealing with this company since yesterday about a prolonged “attack” they’re experiencing only to find out this morning that they hired the people doing it.