> They had some kind of intrusion detection system that finally detected the intrusion on July 29.
If they had some sort of intrusion detection system, I gotta think they would have picked up on this in days, not more than 2 months later.
I feel like this is one of those situations where a dev is saying something like "where is all of the CPU on this database going?" or "Why is the network connection so slow?" and digs into it and finds some strange behavior...
If they had some sort of intrusion detection system, I gotta think they would have picked up on this in days, not more than 2 months later.
I feel like this is one of those situations where a dev is saying something like "where is all of the CPU on this database going?" or "Why is the network connection so slow?" and digs into it and finds some strange behavior...