Initial response efforts were deemed ineffective, resulting in the destruction of evidence. The vulnerabilities contributing to the incident were not promptly identified or fixed. All systems associated with the investigation were taken offline in April 2023, with a new website replacing the old, addressing identified vulnerabilities.