An administrative staff member of a former elected official was detected downloading a significant amount of data from the Council’s sensitive SharePoint folders to a personal device. With privileged access due to her role assisting the elected member, she initiated the download just before the ex-member’s access was revoked. INSIGHT flagged this suspicious activity, and an investigation confirmed that the data had indeed been transferred to the staff member’s personal device.
SharePoint Malicious mass downloads from Sensitive Folder to user’s personal device.
