Hello. Our NPM/NTA environment has been taken completely offline by our SecOps team while they investigate the possible implications of the hack. We need to get to every device that was managed by our deployment, and change the credentials that might have been leaked. Does anyone know what SQL command might show me the node name and IP address of every device NPM was monitoring?
Also, our SecOps team has taken our databases offline...I'm not an expert in chasing malware, but is it even possible there could be anything malicious stored in the DB?