Investigating a Compromised TeamCity On-Premises Server and Its Build Environment
Introduction If you suspect your TeamCity On-Premises server has been compromised through a security vulnerability (such as CVE-2024-27198), and you were unable to patch or upgrade your server prior to the suspected incident, this blog post recommends some of the steps you should take to investigate the incident, along with…