Reply to post:

Been hacked? Now to decide if you chase the WHO or the HOW


I'm aware of an instance where one group was aware of a visitor sending info to a C&C but never told the security team of the IT management because they wanted to build a case against the attacker.When the security team discovered the attack shortly after the damage was already done. The attacker turned out to be China so there was zero chance for legal action & meanwhile more systems were compromised and information stolen.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2021