ZapDM.io Journey to $100k

[BlogPro]

Why didn't you restore emails via IMAP?

Also, you need a lot of hardening work on the server if you're being hacked so easily.

You also need to run a full RCA on why that happened. Make it a habit to record security incidents and the steps you took to mitigate it.

 

[animesh]

Why didn't you restore emails via IMAP?

Also, you need a lot of hardening work on the server if you're being hacked so easily.

You also need to run a full RCA on why that happened. Make it a habit to record security incidents and the steps you took to mitigate it.

I did make a backup of the emails, but unfortunately forgot to take a backup of the encryption keys in haste.

Yes, I agree I should have made the server rules very strict. This was my first experience hosting anything outside a traditional hosting services like vercel.

Honestly, I'm still unsure of what exactly happened, I tried to analyse the cause but it's not the codebase that was vulnerable, I think my firewall was disabled and the attacker's botnet found the perfect spot to strike on. I'm going to look deep into this.

Btw, thanks for reading the thread and giving suggestions