Interactive Demo — Simulated data only. Back to SOC in a Box
SOC365 Dashboard
Acme Legal Services Ltd Live 18:38:10 UTC

USB device policy seems too restrictive for design team

TKT-0013 Low Awaiting Customer Policy Change
Created By
f.hall
Created
2026-06-13 05:43
Last Updated
2026-06-15 09:44
Assigned Analyst
James Okonkwo
Category
Policy Change
Messages
9

Conversation

f.hall Customer
2026-06-13 05:43
We'd like to request a change to our security policy:

USB device policy seems too restrictive for design team

Please let us know if this is feasible and what the security implications would be.
James Okonkwo SOC Analyst
2026-06-13 09:15
Thank you for raising this. I've reviewed the alert and can confirm we're investigating. I'll update you within the hour.
f.hall Customer
2026-06-13 10:42
Thanks. Could you also check if any other accounts were affected?
James Okonkwo SOC Analyst
2026-06-13 13:48
The vulnerability has been added to your remediation tracking. Our next scheduled scan is in 48 hours and will verify the patch was applied successfully.
f.hall Customer
2026-06-13 17:42
Thanks for the quick response. Can you send me the full timeline when it's ready?
James Okonkwo SOC Analyst
2026-06-13 21:30
Good news — our analysis confirms this is a true positive. We've implemented the containment measures and will send a full incident summary within 24 hours.
f.hall Customer
2026-06-13 23:33
We've applied the patch on our end. Can you run a verification scan?
James Okonkwo SOC Analyst
2026-06-14 00:44
I've updated the DLP policy as requested. The HR shared drive is now excluded from the external transfer monitoring rule, but internal audit logging remains active.
f.hall Customer
2026-06-14 03:35
We've applied the patch on our end. Can you run a verification scan?

Reply