Cyber Security - What to do in a Cyber Attack? Part 1 of 2



Critical Steps After a Cyber Attack

As they say, prevention is better than cure. But what if prevention just wasn't good enough? Here are the first critical steps to take after a cyber attack.
By 2019, the cost of data breaches and cyber attacks are expected to increase to $2.1 trillion.
This is almost four times the cost of breaches in 2015. While large retailers, banks, and federal headlines draw massive attention when hacked, businesses of all sizes are at risk.
When it comes to cybersecurity, prevention is always better than a cure. But it's crucial that you and your team know exactly what to do immediately following a cyber attack.
Ready? Let's get started.

Don't Panic After Enduring A Cyber Attack

While it may be easier said than done, it's important that you stay as calm as possible in the event of an attack.
A cyber attack can definitely be classified as a disaster scenario. But if you avoid panicking, you'll be able to take the most proactive steps and respond in a logical and organized way.

Don't Pay a Ransom

Some cyber attacks will involve a ransom, and it can be tempting to just pay the ransom to regain control over your servers.
Often, ransom demands will be low, making it more likely that businesses will choose to pay it, instead of paying for outside IT security consultants to investigate and fix the problem.
But these types of attacks are often used to advertise the hacker's abilities so they will be hired for more damaging attacks later on. Hackers also often communicate, sharing vulnerabilities as they discover them. If you pay a ransom, you may be leaving your business open for future attacks.

Form a Response Team

Before you can address the damage from the cyber attack, you need to form a capable, experienced response team. This team will need to include IT staff members (contracted or in-house) who can investigate the attack and work to resolve it.
You may also need to include HR professionals on this team if your employees are impacted by the attack. PR representatives are also helpful as they can determine the best way to explain the attack to your customers. Finally, you may need to include legal counsel since these attacks have a number of legal implications.

Use Your Backup Servers

If you've got backup servers already available, switch to them immediately following the attack. If they haven't been damaged by the cyber attack, your business can keep its network up and running even while your team is working to fix the issue.
If you don't have these servers, avoid the temptation to switch off your main servers. While this may be your first instinct, turning your servers off won't help fix the damage. If you leave them on, your team can analyze any evidence from the attack and use it to find a solution.

#WatchTheWEB
#SurfSafer

Vinayak Mehta

Comments

Post a Comment

Popular Posts