diff --git a/monkey/common/data/post_breach_consts.py b/monkey/common/data/post_breach_consts.py
new file mode 100644
index 000000000..8262757ca
--- /dev/null
+++ b/monkey/common/data/post_breach_consts.py
@@ -0,0 +1,2 @@
+POST_BREACH_BACKDOOR_USER = "Backdoor user"
+POST_BREACH_FILE_EXECUTION = "File execution"
diff --git a/monkey/infection_monkey/post_breach/actions/add_user.py b/monkey/infection_monkey/post_breach/actions/add_user.py
index ff7ae3a50..ce05371a6 100644
--- a/monkey/infection_monkey/post_breach/actions/add_user.py
+++ b/monkey/infection_monkey/post_breach/actions/add_user.py
@@ -1,8 +1,9 @@
 import datetime
+
+from common.data.post_breach_consts import POST_BREACH_BACKDOOR_USER
 from infection_monkey.post_breach.pba import PBA
 from infection_monkey.config import WormConfiguration
 
-
 __author__ = 'danielg'
 
 LINUX_COMMANDS = ['useradd', '-M', '--expiredate',
@@ -16,6 +17,6 @@ WINDOWS_COMMANDS = ['net', 'user', WormConfiguration.user_to_add,
 
 class BackdoorUser(PBA):
     def __init__(self):
-        super(BackdoorUser, self).__init__("Backdoor user",
+        super(BackdoorUser, self).__init__(POST_BREACH_BACKDOOR_USER,
                                            linux_cmd=' '.join(LINUX_COMMANDS),
                                            windows_cmd=WINDOWS_COMMANDS)
diff --git a/monkey/infection_monkey/post_breach/actions/users_custom_pba.py b/monkey/infection_monkey/post_breach/actions/users_custom_pba.py
index a388813ab..468a2b29b 100644
--- a/monkey/infection_monkey/post_breach/actions/users_custom_pba.py
+++ b/monkey/infection_monkey/post_breach/actions/users_custom_pba.py
@@ -1,6 +1,7 @@
 import os
 import logging
 
+from common.data.post_breach_consts import POST_BREACH_FILE_EXECUTION
 from infection_monkey.utils import is_windows_os
 from infection_monkey.post_breach.pba import PBA
 from infection_monkey.control import ControlClient
@@ -27,7 +28,7 @@ class UsersPBA(PBA):
     Defines user's configured post breach action.
     """
     def __init__(self):
-        super(UsersPBA, self).__init__("File execution")
+        super(UsersPBA, self).__init__(POST_BREACH_FILE_EXECUTION)
         self.filename = ''
         if not is_windows_os():
             # Add linux commands to PBA's
diff --git a/monkey/monkey_island/cc/services/telemetry/processing/post_breach.py b/monkey/monkey_island/cc/services/telemetry/processing/post_breach.py
index b086d5ff4..2515c2d30 100644
--- a/monkey/monkey_island/cc/services/telemetry/processing/post_breach.py
+++ b/monkey/monkey_island/cc/services/telemetry/processing/post_breach.py
@@ -1,7 +1,17 @@
 from monkey_island.cc.database import mongo
+from common.data.post_breach_consts import *
+
+POST_BREACH_TELEMETRY_PROCESSING_FUNCS = {
+    # `lambda *args, **kwargs: None` is a no-op.
+    POST_BREACH_BACKDOOR_USER: lambda *args, **kwargs: None,
+    POST_BREACH_FILE_EXECUTION: lambda *args, **kwargs: None,
+}
 
 
 def process_post_breach_telemetry(telemetry_json):
     mongo.db.monkey.update(
         {'guid': telemetry_json['monkey_guid']},
         {'$push': {'pba_results': telemetry_json['data']}})
+
+    if telemetry_json["name"] in POST_BREACH_TELEMETRY_PROCESSING_FUNCS:
+        POST_BREACH_TELEMETRY_PROCESSING_FUNCS[telemetry_json["name"]](telemetry_json)