This is Adeel Alkaser, IT department head at Gaul Insurance. We have a security breach discovered early morning today and we are looking forward your assistance in analyzing what happened.
It all started yesterday where our Network team has noticed unusual traffic and connections going through our network from unusual ports, specifically from DMZone to the internet. After that, our Technical team investigated the issue and discovered some misconfiguration on our external Firewall. They fixed the issue by creating firewall rules to allow only HTTP connections from port 80 and 443.
Today morning, we have found our website defaced by anonymous hacker group and a massage appears on the website main page indicating that sensitive files are not accessible anymore because it became encrypted.nWhat should we do? Could you give us advice or assistance to investigate this problem?
- TIME90 MINUTES
- COST10 CRYSTALS