We're here to help!
With employees working from home more than ever, this increases the risk of cyber attacks. SCS Agency is uniquely qualified to help protect you or your business from this risk through the procurement of insurance, while implementing measures to prevent cyber attacks from happening in the first place! We will be highlighting the mistakes most organizations make after a cyber attack. Let us help protect you and your business.
Cyber Security Insurance
When you need protection from targeted ransomware, a properly-sized liability policy is often the most cost effective way to shield your business from a potentially devastating cyber attack. Cyber insurance covers a broad range of exposures and can cover disaster recovery.
10 Mistakes Organizations Make After a Cyber Attack
Failing to Contain the Malware
Once there is a cyber breach, most organizations focus on recouping the encrypted data instead of making sure the malware hasn’t spread. It’s recommended to eliminate the original attack vector, find out what caused the breach, and then ensure that the threat is no longer spreading.
Not Having a Solid Response Plan
In case of a cyber breach, it’s crucial for organizations to have an incident-response plan ready before an attack occurs. This covers all the necessary steps a security team should take if and when an attack occurs. If you don’t have a plan in place, any decisions made at that moment tend to make matters worse.
Having Poorly Placed Backups
Ransomware gangs are becoming craftier in ensuring that their victims pay the ransom. They are moving across networks to find backups, destroying them, then deploying the malware. If backups aren’t stored properly, you will find yourself having to pay the ransom and potentially having no backups at all.
Making Missteps on Negotiations
If your organization finds itself having to pay the ransom, it’s not recommended to negotiate on price. This can lead to the ransomware operators increasing the price. If you choose to negotiate, it’s recommended to hire an outside firm that specializes in these scenarios.
Going it Alone
If your organization has just been hit with a ransomware-attack, then you should have a third-party incident response provider in charge of handling them. They can help with the remediation of your system and increase defenses to avoid any future potential attacks. If you deal with this alone, the attacker might return with different ransomware and require a higher ransom price.
Leaving Out Law Enforcement
It’s recommended to inform law enforcement and the local FBI about the recent cyber breach. They have tools and resources to help recover encrypted information and find the ransomware gang.
Waiting Too Long to Call the Insurer
It’s crucial to call your cyber insurance provider as soon as an attack occurs. They will oversee handling the attack and have a plan in place to help you remedy this breach.
Giving in to Fear and Panic
It’s important to remain calm and follow the incident response plan after a ransomware attack. It’s not beneficial to give into emotions of fear and panic. Remaining calm and following the incident response plan will help your organization return to normal business operations.
Spending Time Looking for Decryption Keys
Some organizations spend time looking for decryption keys online. However, ransomware attackers use keys that are target-specific. So, one decryption key for one organization won’t be a match for another organization. If you use a decryption tool and don’t have the right key, you risk damaging your files.
Not Learning From the Experience
If you’ve been a victim of a cyber-attack, it’s best to look back on it and figure out the gaps in your security. As well as take note if you had a response plan in place. Make sure that you make the necessary improvements to your security and response plan, so you’re prepared for any future attacks.