Posted 02 March 2012 - 08:32 PM
I'm new to this board and even newer to this topic, so please bare with me.
Lets say that you were running a forum with n-amount of members. The forum software had a security flaw that someone exploited by injecting SQL-queries into a badly designed form, thus getting over some sensitive data. And lets say that you had caught this someone's IP-address while he was doing so - how would/should you proceed from there on?
Most likely, he was behind some sort of proxy. Would that make any work to trace him pointless?
Posted 04 March 2012 - 03:49 PM
Posted 06 March 2012 - 02:05 PM
Posted 06 March 2012 - 02:19 PM
I would patch the hole, inform the parties affected by the breach, and enact preventative measures to mitigate further exploitation.
This. Most definitely this.
BinRev is hosted by the great people at Lunarpages!