Handle only broxss, brotunnel, brosqli attacks

Squash this commit message

meteor/app/client/vr.js

@@ -193,7 +193,7 @@ if (Meteor.isClient) {
           var evtHost = evt.documentsource.details.host;
           var doc = evt.documentsource;
           doc.id = evt.documentid;
-          doc.read = evt.read;
+          doc.read = evt.read || false;
           if (evtHost == undefined) {
             return;
           }

meteor/app/lib/collections.js

@@ -202,7 +202,9 @@ if (Meteor.isServer) {
     Meteor.publish("attackers-summary-landmass", function () {
         //limit to the last 100 records by default
         //to ease the sync transfer to dc.js/crossfilter
-        return attackers.find({});
+        var inModifier = { $in: ["broxss", "brotunnel", "brosqli"]};
+        return attackers.find({"events.documentsource.category": inModifier},
+                              {sort: {lastseentimestamp: -1}});
     });
 
     Meteor.publish("investigations-summary", function () {