LRT published a discussion on the Registry Centre data leak, quoting information security expert Marius Parescius on access rights, monitoring and the sequence of data extraction.
The key point for organisations is simple: incident response is not only a technical question. It also requires clear responsibility, logging, fast communication and rehearsed crisis procedures.
Practical takeaways
- Review who has maximum privileges and why.
- Enable strong authentication and avoid password recovery flows that rely only on mailbox access.
- Run crisis simulations before a real data leak happens.
- Communicate potential impact early, even while the investigation is still ongoing.