Three Step Pogram: Pre-Breach Remedies To Contain The Costs Of A Cyber Attack

Uploaded on 2016-11-22 in TECHNOLOGY--Hackers, NEWS-Cybersecurity News, FREE TO VIEW

Data breaches are very costly. Organisations should consider three basic steps to ensure they are prepared to remedy a future breach.

Over the last year there have been a variety of high-profile security breaches ranging in severity, from TalkTalk, which was fined £400,000 for its 2015 breach, to Yahoo, which had $1 billion of its potential value wiped by the news of its own hack.

When looking at most security breach cases it’s clear that the size of their financial implications is often vastly underestimated. Companies need to put the same amount of effort into protecting against the immediate aftermath of a breach, as they do in its initial prevention.

Mobile breaches present a particularly unique challenge for organisations. Responding to any cyber breach is complicated, but the complexity is often worsened due to the personal nature of a mobile device itself.

A tangled web of data cross-pollination is being created due to the increasing popularity of BYOD and work emails on personal devices. This means that productivity can increase among employees, but with greater mobile use comes significant complications around clean-up and remediation when those mobiles are breached.

With employees innocently pushing forward with productivity, IT departments must take control of the security implications.

A recent study from Wandera found that companies spend three times as much on remedying a mobile security breach than they could have spent to simply prevent it in the first place.

In the UK alone, the average cost of remedying an enterprise mobile security breach stands at an astounding £167,000. To avoid this, organisations need to consider three basic but crucial steps to ensure they are sufficiently prepared to remedy a future breach.

1.    Assess and notify

This should be at the top of the to do list when a breach occurs. The news will need to be shared within your organisation immediately. Too often businesses are silent when data breaches occur, as though the fear of external discovery outweighs the importance of having a wider discussion throughout the organisation.

In terms of a mobile data breach, businesses need to realise that the situation is different. The split personality of a mobile device, by definition, involves an individual as well as the business. The faster the company notifies everyone involved and shares intelligence on what was breached, the less of a ripple effect the breach will have.

Passwords will need to be changed, including all device passwords, not just those used within the company, but any that were put at risk. Defensive steps will also need to be taken if sensitive data such as contact lists, credit cards, business or personal images and location information was leaked.

2   Perform a forensics analysis

To truly clean up a breach, there must be a clear understanding of how it occurred and what was put at risk. Performing a post-breach forensics investigation must start with visibility across the mobile fleet in the first place.

To get ahead before a breach occurs, companies should invest in a mobile threat defence solution that can provide data on how the breach occurred, which users were impacted and provide clues as to which data may have been compromised.

With complete visibility of the issue, businesses will be aware of what the next move needs to be to minimise further damage.

3.    Improve defences

The visibility that is obtained during forensics investigation can also pave the way for improved defences via policy controls in the future. Typically, IT teams roll out an open mobility program to start allowing users to install their own apps and ensure there are no restrictions on websites they can access.

As breaches occur, compliance violations are observed and as productivity concerns are raised, IT will often need to take a step back and implement mobile data policies to ensure that these corporate resources are used effectively and securely.

Companies need to take a close look at their access policies after a breach and ensure that adequate steps are in place to protect mobile data, while simultaneously safeguarding users’ productivity.

Security breaches don’t have a consistent formula or uniform. They come in different shapes, sizes and levels of damage, meaning there isn’t one way for businesses to protect themselves against a breach.

The sad reality is that it’s a case of ‘when’ a security breach will happen, instead of ‘if’ now, and organisations must be prepared for the aftermath.

As the probability of a hack increases, and the use of employee devices increases alongside this, organisations must take the above three steps into consideration to ensure that issues after the breach are minimised.

Information-Age:       Tech Jobs Would Be Great, If It Wasn’t For The Users:

 

 

« Social Media & The New Advertising Model (£)
Spies Use Tinder »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

Infosecurity Europe, 3-5 June 2025, ExCel London

Infosecurity Europe, 3-5 June 2025, ExCel London

This year, Infosecurity Europe marks 30 years of bringing the global cybersecurity community together to further our joint mission of Building a Safer Cyber World.

SureCloud

SureCloud

SureCloud is a Governance, Risk and Compliance (GRC) and Cybersecurity Solutions provider.

ControlScan

ControlScan

ControlScan is a Managed Security Services Provider (MSSP) - our primary focus is protecting your business and securing your sensitive data.

Westminster eForum

Westminster eForum

Wesrtminster eForum runs a series of conferences on matters relating to the UKs Digital Strategy. Topics include Smart Cities and Cyber Security.

ATIS Systems

ATIS Systems

ATIS Systems offers first-class complete solutions for legal interception, mediation, data retention, and IT forensics.

SwiftSafe

SwiftSafe

SwiftSafe is a cybersecurity consulting company providing auditing, pentesting, compliance and managed security services.

Logic Supply

Logic Supply

Logic Supply is a global industrial PC company focused on hardware for the IoT edge. We design highly-configurable computers engineered for reliability.

Hut Six Security

Hut Six Security

Train, test and track your Information Security culture through information security awareness training and customised phishing simulation campaigns.

Nokia

Nokia

Nokia is a proven leader in fixed, mobile and IoT security offering capabilities that range from systems design to integration and support.

Genius Guard

Genius Guard

Genius Guard specializes in DDoS Protection, DDoS Protected Webhosting, HYIP Hosting, Bitcoin Hosting, Cryptocurrency Hosting.

Fastcomcorp

Fastcomcorp

Fastcomcorp offers a world-class proactive cyber security defense and risk management consulting. Including Darkweb monitoring and posture assessments.

Solvere One

Solvere One

Solvere One is a managed service provider (MSP) focused on corporate consulting and partnership.

Brightsolid

Brightsolid

Brightsolid are experts in Hybrid Cloud. We design, build and manage secure, scalable cloud environments that meet customers’ business ambitions.

Core to Cloud

Core to Cloud

Core to Cloud provide consultancy and technical support for the planning and implementation of sustainable security strategies.

Professional Labs

Professional Labs

Professional Labs specialize in simplifying complex problems for our customers with Cloud Services, Managed Services and Cyber Security.

Infodot Technologies

Infodot Technologies

Infodot Technologies specialize in a co-managed IT support and services approach, where businesses share their IT responsibilities with a skilled Managed IT Services Provider (MSP).

Blind Insight

Blind Insight

Field-level searchable encryption plus fine-grained programmable access controls. All wrapped neatly in developer-friendly APIs and SDKs. Data protection perfection.