[Centigonal]

from todesktop's report:

> Completed a review of the logs. Confirming all identified activity was from the researcher (verified by IP Address and user agent).

[hakaneskici]

With privileged access, the attackers can tamper with the evidence for repudiation, so although I'd say "nothing in the logs" is acceptable, not everyone may. These two attack vectors are part of the STRIDE threat modeling approach.

[morgante]

They don’t elaborate on the logging details, but certainly must good systems don’t allow log tampering even for admins.

[cdmyrm]

How confident are you that their log system is resilient, given the state of the rest of their software?

[MuteXR]

Following that logic it would be literally impossible to trust any part of their infra. They had a bad build container, the rest of their stuff was solid.