{"id":1153,"date":"2018-06-22T08:27:02","date_gmt":"2018-06-22T13:27:02","guid":{"rendered":"https:\/\/media-moon.com\/blog\/?p=1153"},"modified":"2018-08-14T15:28:25","modified_gmt":"2018-08-14T20:28:25","slug":"what-you-need-to-do-if-your-business-is-impacted-by-a-cyber-attack-part-1","status":"publish","type":"post","link":"https:\/\/media-moon.com\/blog\/what-you-need-to-do-if-your-business-is-impacted-by-a-cyber-attack-part-1\/","title":{"rendered":"What You Need to Do If Your Business Is Impacted by a Cyber Attack – Part 1"},"content":{"rendered":"

In one of our previous posts<\/a> we reviewed five tips on how to avoid a data breach. In summary, these include the following:<\/p>\n

    \n
  1. Collect only the needed information and data.<\/li>\n
  2. Make sure the passwords that you establish are difficult to be broken by a cyber attacker.<\/li>\n
  3. Make sure you use the proper levels of encryption.<\/li>\n
  4. Limit network access.<\/li>\n
  5. Not all cyber-attacks target electronic data.<\/li>\n<\/ol>\n

    In this post, we’ll go through some of the important things that you’ll want to do in the unfortunate case of\u00a0your business getting hit with a cyber-attack<\/strong>.<\/p>\n

    What You Need to Do<\/h3>\n

    Secure the lines of defense at your business.\u00a0After you have been impacted by cyber based attack, this is absolutely the first step that you need to do<\/strong>.<\/p>\n

    It involves the following components:<\/p>\n

      \n
    • Secure all of the physical devices and relevant software applications:<\/strong><\/li>\n<\/ul>\n

      More than likely, this will involve the servers, the impacted workstations \/ computers, and any other associated wireless devices.<\/p>\n

      It is important to change all of the all of the relevant passwords of these impacted devices. Obviously there will not be a lot of time to do this, so…<\/p>\n

      \n

      There should be a plan in place before a CYBER attack occurs that describes exactly what needs to be done.<\/p>\n<\/blockquote>\n

      In some instances the best option may be to shut down affected devices until an assessment can be made to see what exactly happened.<\/p>\n

        \n
      • Stop additional data loss:<\/strong><\/li>\n<\/ul>\n

        If the impacted devices have been shut down, you then need to determine what software applications and hardware depended on them.<\/p>\n

        For example, if the workstations and wireless devices were accessing a shared database, they should be closely monitored for at least a few days after the cyber-attack has occurred. This is to make sure that no further information and data is being covertly stolen or hijacked.<\/p>\n

        In this case, it would be very prudent to make sure that this database is backed up immediately, and that you continue to back it up every couple of hours – depending on how crucial it is to your operations.<\/p>\n

        \"\"<\/p>\n

          \n
        • Assemble a team of experts:<\/strong><\/li>\n<\/ul>\n

          This team should consist of the following individuals of your company:<\/p>\n

          > Team Leader:<\/strong><\/p>\n

          Responsible for the overall incident response; will coordinate the necessary actions that need to take place.<\/p>\n

          > Incident Lead:<\/strong><\/p>\n

          Responsible for coordinating the actual response.<\/p>\n

          > IT Contact:<\/strong><\/p>\n

          Responsible for communications between the Incident Lead and other members of the IT staff.<\/p>\n

          > Legal Representative:<\/strong><\/p>\n

          Responsible for leading the legal aspects of the incident response.<\/p>\n

          > Public Relations Officer:<\/strong><\/p>\n

          Responsible for protecting and promoting the image of the business entity during an incident response.<\/p>\n

          > Management Team:<\/strong><\/p>\n

          Responsible for approving and directing Security Policy during an incident response.<\/p>\n

          If your business is small, with only a few workers, obviously you will not be able to have all of the above titles on your team.<\/p>\n

          If this is the case, then the minimum titles that you’ll probably need to have on your team are yourself (the business owner), your IT lead, and a legal representative, which in this case, may be your business attorney.<\/p>\n

          Also, if possible (and if affordable), you may also want to hire a forensics expert to work with you, and your IT lead to determine the root cause of the cyber-attack.<\/p>\n

          In this regard, you won’t want to destroy any evidence, as this will be imperative to the work of the forensics investigator.<\/p>\n

          It is also important that this team be assembled early on when you first start your business. This is so your designated people can respond quickly to the cyber-attack – rather than scrambling around at the last minute after the fact.<\/p>\n

          A Lot of Information<\/em><\/h3>\n

          In summary, the above steps can be diagrammed as follows:<\/p>\n

          \"\"<\/p>\n

          Some of our upcoming posts will continue to examine what you need to do, as the business owner, if you are impacted by a cyber-attack. Although one of the keys is prevention – as much as possible.<\/p>\n

          Some of the remaining themes to be discussed in our future posts will be:<\/p>\n

            \n
          • How to fix the security vulnerabilities;<\/li>\n
          • Notifying the relevant parties that have been impacted by the cyber-attack.<\/li>\n<\/ul>\n
            \n

             <\/p>\n","protected":false},"excerpt":{"rendered":"

            In one of our previous posts we reviewed five tips on how to avoid a data breach. In summary, these include the following: Collect only the needed information and data. Make sure the passwords that you establish are difficult to be broken by a cyber attacker. Make sure you use the proper levels of encryption. […]<\/p>\n","protected":false},"author":7,"featured_media":1155,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"site-sidebar-layout":"default","site-content-layout":"","ast-site-content-layout":"default","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","ast-disable-related-posts":"","theme-transparent-header-meta":"","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"default","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"footnotes":""},"categories":[146,156],"tags":[228,120,229,204,206,219,220],"class_list":["post-1153","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-business-continuity","category-cyber-security","tag-back-up-plan","tag-bdr","tag-contingency-plan","tag-cyber-attack","tag-smb","tag-smb-security","tag-what-to-do"],"aioseo_notices":[],"aioseo_head":"\n\t\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\t