[TheConfidentBroker]

Id look internal at who has access to your data before hiring a SF architect to audit. Id imagine theres a much higher chance someone on your team is stealing from you vs someone hacked your Salesforce.

Agree. Very intrigued by this though. Was is manually created in SF or do you have a form that flows in from your site? You can see who created the lead - do you have an audit report for your users?