Cyber Incident Response Plan – It Won’t Be Any Worse Off
Take a glance at the most discussed cybersecurity news of the week. Get to know about the digital immune system, market demands related to cybersecurity professionals, cybersecurity issues and trends. Learn about cyber incident response plan.Most organizations do not have a consistent incident response plan. Nearly 80% of respondents admitted this fact. Just imagine, you unlock your device, open out of the habit a popular application, and then read a direct mail, confirming that you are in a “Nasty List”.
Cybersecurity is a challenge common for every organization
Dark Reading on April 15, 2019
Speaking about business cybersecurity, data protection can be compared with the human’s immune system. When it is strong, the system works without any hitches. However, there are always potential threats, coming from both the inside and the outside that can hardly be predicted. Thus, if there is a likelihood of unexpected cyber incident response, what should IT teams remember to be ready?
- Unite for a common purpose. The team tasked with building and managing organization cybersecurity, should be highly involved in studying the whole enterprise environment.
- Security cannot come at the expense of uptime. It is a primary task for any organization to ensure the consistent availability and performance of business-critical systems.
- It is OK to fail if you can recover. Failures can happen. The question is how quickly IT department can discover, investigate, and stop that activity.
- Responsibility for secure operations can and should be shared between IT ops and SecOps.
- Cooperation benefits compliance as well. GDPR and HIPAA regulations require businesses to meet strict standards for data privacy.
- Keep moving forward and share knowledge with other employees.
Do not click on Instagram “Nasty List” link!
Forbes on April 14, 2019
Just imagine, you unlock your device, open out of the habit a popular application, and then read a direct mail, confirming that you are in a “Nasty List”: “WOW. Your (sic) on here!!! ranked 100.” The message includes a link to the whole Nasty List and provides the explanation, why the user was included into it. Moreover, this lands at a convincing looking, but fake, Instagram page.
It is unsurprising that shocked user clicks the link and then his login credentials are scraped by malefactors. After that hackers use this account to continue the “Nasty List” campaign.
Therefore, do not get fooled by another login credential thief. If you were accidentally trapped, try to reset the password in the “Privacy and Security” settings. The proven method to protect your account and prevent scams such as the “Nasty List” is two-factor authentication.
What about the cyber incident response plan? IBM Reports
eWeek on April 11, 2019
As it is probably expected, the answer is slightly disappointing. According to the “2019 Study on the Cyber Resilient Organization”, the majority of organizations do not have a proper cyber incident response plan. Have a look at the main conclusion of the report:
- Most organizations do not have a consistent incident response plan. Nearly 80% of respondents admitted this fact.
- Even organizations with cyber incident response plans aren’t doing it right. 54% of the organizations never tested their cyber incident response plan.
- Intelligence and threat sharing are key to improving cyber-resilience. More than half of respondents noted.
- Skill issues are still a problem in cybersecurity. Only 30% of participants reported that their cybersecurity staffing is sufficient.
- Many are not yet GDPR-compliant, although all companies conducting their business in the EU were obliged to do it.