Is there a way to detect what folders/files were searched or touched when an attack is discovered? Our security guys shut down one of my servers because of a lot of bandwidth happening on an unused port. There is some personal data on the server and I need to know if that information was compromised.
Thanks!
Thanks!