Oops x 2: lack of logs confounds thorough breach investigation

The Depository Trust and Clearing Corporation realized that employee information – including SSN and financial information – was improperly accessible to other employees on its intranet. But its lack of adequate logging procedures made it impossible for them to determine who may have accessed the data, they report to the New Hampshire Attorney General.

ModMed revealed they were victims of a cyberattack in July. Then some data showed up for sale.
Resource: NY DFS Issues New Cybersecurity Guidance to Address Risks Associated with the Use of Third-Party Service Providers
KT Chief to Resign After Cybersecurity Breach Resolution
Cyber-Attack On Bectu’s Parent Union Sparks UK National Security Concerns
A business's cyber insurance policy included ransom coverage, but when they needed it, the insurer refused to pay. Why?
Before Their Telegram Channel Was Banned Again, ScatteredLAPSUS$Hunters Dropped Files Doxing Government Employees (2)

1 thought on “Oops x 2: lack of logs confounds thorough breach investigation”

seems to me that its a coverup. I think they want to save some people. Are they saying that ALL logs are not there? Logs dont come from just the server or device that houses the data. Routers, some switches, other servers and even the workstations have logs. It seems to me that unless ALL logs everywhere are missing or destroyed/erased, its a cover up. It depends on which side, inside or the overall effects of how bad the hack really was. Maybe the hacker erased everything. who knows for sure. or, its an forceful pushback to the government.

= \

Comments are closed.

Related:

1 thought on “Oops x 2: lack of logs confounds thorough breach investigation”