Steve Jones - SSC Editor wrote:
I agree with Jeff. If you want to change passwords, do so though be aware this might mean reboots or restarts. For service accounts, use group service accounts, or strong, unknown passwords. If you have users or apps using this, you are opening up potential audit issues, and perhaps even allowing attack vectors from ransomware and viruses. Don't do this. Give everyone their own account for production work so that you can determine who does what. This is the time to do this as you re-evaluate security.
Thanks a lot Steve.
As Michael Suggested earlier we will check the MSA & gMSA . Applications are using separate SQL authentication accounts.
We are using DML audits but it logs only parametrized query and not exact values.
Definitely we will implement the changes.