As businesses move to a remote workforce, hackers have increased their activity to capitalize on new security holes. Cybercriminals often use unsophisticated methods that continue to be extremely successful.
These include phishing emails to harvest credentials and gain easy access to business-critical environments.
Hackers are also using ransomware to hold your data hostage, demanding a ransom payment in exchange for a decryption key that unlocks your stolen data.
When dealing with a cyberattack, there are practical steps you want to follow.
What do these steps include?
- Quickly contain and isolate critical systems
- Report the hack to your customers and business stakeholders
- Engage the help of law enforcement
- Enact your disaster recovery and business continuity plans
- Analyze the attack, and remediate
Quickly contain and isolate critical systems
This first step is necessary: quickly contain and isolate critical systems. There is a chance that if you discover ransomware or other evidence of the hack on your network, it may not have made it to all business-critical data and systems.
Isolate known infected clients from the network as soon as possible. This action prevents any…