SlideShare a Scribd company logo

How to recover from your next data breach

SILO Compliance Systems, profile picture
SILO Compliance Systems

The document outlines strategies for recovering from a data breach, emphasizing the importance of assembling a comprehensive response team that includes key stakeholders from various departments. It highlights the need to identify the source of the breach, educate employees on recovery protocols, and utilize digital storage systems for effective data restoration. Additionally, it stresses the significance of transparency in reporting breaches to uphold trust and improve cybersecurity practices.

Business
Related topics:
Data Breach Insights
1 of 8
Download to read offline
1
2
3
4
5
6
7
8
How to recover from your next data breach
Put Together a Response Team A data breach demands a comprehensive response. Knowing who will be part of your response team and assigning their primary tasks ahead of time will help you quickly take appropriate action. The team should be enterprise-wide and include key members of the executive team and board of directors, the head of IT, security experts, as well as representatives from your legal, communications and HR departments. It is important to remember that it is not just your company’s data that has been compromised. Employees need to know what risk they are at and what they need to do. Vendors and clients who were impacted need to be informed. Having a comprehensive team in place will help create a multifaceted plan that addresses all the issues a data breach may create.
Identify the Source and Spread In the aftermath of an incident, you do not want to take any steps that might spread the problem inadvertently. Keep focus on identifying the source of the attack and isolate the affected servers and systems. Infected machines should be analyzed to determine if a full operating system restore is required or if they can be cleaned using anti-ransomware software. As ransomwares like Ryuk evolve, creating a hierarchy of attack on a network, this isolation becomes even more crucial. This latest generation of attacks can be more effective, faster, and spread wider than those of the past. Ensuring your team is educated and updated on the latest variants will help them to know where to start looking once a breach occurs.
Think Before You Act
If a ransomware attack happens and employees find themselves locked out of their data, the gut reaction may be to reload from backed-up files. That is what they are there for after all. There is a good chance, however, that these files have also been targeted by the attack, leaving them encrypted, unrecoverable or also infected. Always train employees to scan backup files before attempting a recovery. Digital storage systems that enable point-in-time recovery can be invaluable in reducing downtime from a ransomware attack that manages to encrypt data and backup files. These systems enable security and IT teams to roll back to a restore point before the infection, which should recover the bulk of the data in a single step. Since these systems track changes at the block level, they are able to recover quickly. Back-ups of the most critical files and data should be kept in air-gapped storage systems. This ensures that at least one copy of the data is always housed on servers that are isolated from the network and will remain unaffected by an attack.
Don’t Cover It Up When it comes to data breaches of any kind, from a DDoS attack to malware, there can be a perceived negative stigma. There may be fears that the breach will make your company look careless and undermine the trust of clients and partners. There may be an impulse toward keeping quiet. After all, if no one knows about it, it didn’t really happen. The truth is these sorts of attacks are common. A breach is not a sign of corporate weakness, it is an unfortunate reality of existing in the digital age. The worst thing you could do after a breach is to keep it quiet. In many cases, your company has a legal duty to notify law enforcement or privacy regulators. Every attack needs to be understood so as to give White Hats a chance to bring equilibrium to that ebb and flow of vulnerability. Reporting is the first thing you can do to protect your organization from a subsequent attack.
In the aftermath of a breach, your company’s leadership will be focused on cybersecurity. That presents an opportunity for a wide-ranging evaluation of your current security practices, procedures and tools. Don’t waste it. Protect Your Network from Another Attack
SILO Compliance Systems 1067 South Hover Street, #E-172, Longmont, Colorado, 80501

More Related Content

PDF
CYBER ATTACK RECOVERY GUIDE
MUHAMMAD HUZAIFA CHAUDHARY
 
PDF
Malware Attacks | How To Defend Organizations From It?
SOCVault
 
PDF
Securing Your Work from Home.pdf
KavitaDubey18
 
PPTX
Assess risks to IT security.pptx
lochanrajdahal
 
PDF
Cybersecurity risk assessments help organizations identify.pdf
TheWalkerGroup1
 
PDF
Tech Talent Meetup Hacking Security Event Recap
Dominic Vogel
 
PDF
10 Tips to Improve Your Security Incident Readiness and Reponse
EMC
 
PDF
How to Bulletproof Your Data Defenses Locally & In the Cloud
Nordic Backup
 
CYBER ATTACK RECOVERY GUIDE
MUHAMMAD HUZAIFA CHAUDHARY
 
Malware Attacks | How To Defend Organizations From It?
SOCVault
 
Securing Your Work from Home.pdf
KavitaDubey18
 
Assess risks to IT security.pptx
lochanrajdahal
 
Cybersecurity risk assessments help organizations identify.pdf
TheWalkerGroup1
 
Tech Talent Meetup Hacking Security Event Recap
Dominic Vogel
 
10 Tips to Improve Your Security Incident Readiness and Reponse
EMC
 
How to Bulletproof Your Data Defenses Locally & In the Cloud
Nordic Backup
 

Similar to How to recover from your next data breach (20)

PDF
How Can Cybersecurity Services Help Protect My Organization from Ransomware A...
SafeAeon Inc.
 
PDF
In computer security, a vulnerability is a weakness which allows an .pdf
anandanand521251
 
PDF
How to secure your enterprise data during Covid-19
Dharmendra Rama
 
PDF
Should You Pay Ransomware.pdf
KavitaDubey18
 
DOC
Take back your security infrastructure
Anton Chuvakin
 
PPTX
Security Transformation
Faisal Yahya
 
PDF
Cybersecurity After WannaCry: How to Resist Future Attacks
Strategy&, a member of the PwC network
 
PPT
Network Security
United Nations Development Program
 
PPTX
Threat Intelligen.pptx
CompanySeceon
 
PDF
Mark Lanterman - The Risk Report October 2015
Mark Lanterman
 
PDF
How to Knock Out Threats from Crypto-Style Viruses
Carbonite
 
PDF
Measures to Avoid Cyber-attacks
Skillmine Technology Consulting
 
PDF
Measure To Avoid Cyber Attacks
Skillmine Technology Consulting
 
PPTX
Internet safety and you
Art Ocain
 
PDF
Cyberattacks on the Rise: Is Your Nonprofit Prepared?
TechSoup
 
PDF
Threat Lifecycle Management_Whitepaper
Duncan Hart
 
PDF
threat-lifecycle-management-whitepaper
Rudy Piekarski
 
PPTX
A Comprehensive Guide on How to Recover from a Ransomware Attack
Ahad
 
PDF
Security operations center 5 security controls
AlienVault
 
DOCX
Chapter 33Incident Response and Forensic AnalysisCopyright ©.docx
christinemaritza
 
How Can Cybersecurity Services Help Protect My Organization from Ransomware A...
SafeAeon Inc.
 
In computer security, a vulnerability is a weakness which allows an .pdf
anandanand521251
 
How to secure your enterprise data during Covid-19
Dharmendra Rama
 
Should You Pay Ransomware.pdf
KavitaDubey18
 
Take back your security infrastructure
Anton Chuvakin
 
Security Transformation
Faisal Yahya
 
Cybersecurity After WannaCry: How to Resist Future Attacks
Strategy&, a member of the PwC network
 
Network Security
United Nations Development Program
 
Threat Intelligen.pptx
CompanySeceon
 
Mark Lanterman - The Risk Report October 2015
Mark Lanterman
 
How to Knock Out Threats from Crypto-Style Viruses
Carbonite
 
Measures to Avoid Cyber-attacks
Skillmine Technology Consulting
 
Measure To Avoid Cyber Attacks
Skillmine Technology Consulting
 
Internet safety and you
Art Ocain
 
Cyberattacks on the Rise: Is Your Nonprofit Prepared?
TechSoup
 
Threat Lifecycle Management_Whitepaper
Duncan Hart
 
threat-lifecycle-management-whitepaper
Rudy Piekarski
 
A Comprehensive Guide on How to Recover from a Ransomware Attack
Ahad
 
Security operations center 5 security controls
AlienVault
 
Chapter 33Incident Response and Forensic AnalysisCopyright ©.docx
christinemaritza
 
Ad

Recently uploaded (20)

PPTX
BUSINESS CYCLE_INFLATION AND UNEMPLOYMENT.pptx
TasmiaThalil
 
PPTX
basic introduction to research chapter 1.pptx
sangeethanagaraj8
 
PPTX
Slide gioi thieu VietinBank Quy 2 - 2025
hoadm5190
 
PDF
1911 Gold Corporate Presentation Aug 2025.pdf
Shaun Heinrichs
 
PDF
Module 3 - Functions of the Supervisor - Part 1 - Student Resource (1).pdf
OmoobaOrun1
 
DOCX
Hand book of Entrepreneurship 4 Chapters.docx
DrSubinKMohan
 
PPTX
Astra-Investor- business Presentation (1).pptx
diksha27bhardwaj
 
PPTX
CTG - Business Update 2Q2025 & 6M2025.pptx
HcTrSoros
 
PPTX
Board-Reporting-Package-by-Umbrex-5-23-23.pptx
Pars Six Sigma Excellence
 
PDF
THE COMPLETE GUIDE TO BUILDING PASSIVE INCOME ONLINE
Malcolm86
 
PDF
Daniels 2024 Inclusive, Sustainable Development
CMassociates
 
PDF
Robin Fischer: A Visionary Leader Making a Difference in Healthcare, One Day ...
The lifescience magaizne
 
PDF
Booking.com The Global AI Sentiment Report 2025
agatadrynko
 
PDF
Satish NS: Fostering Innovation and Sustainability: Haier India’s Customer-Ce...
red402426
 
PPTX
Principles of Marketing, Industrial, Consumers,
efranciscaantoinette
 
PDF
Solara Labs: Empowering Health through Innovative Nutraceutical Solutions
The lifescience magaizne
 
PDF
How to Get Business Funding for Small Business Fast
Jake Thornhill
 
PPT
Lecture 3344;;,,(,(((((((((((((((((((((((
princessbliss09
 
PDF
PMB 401-Identification-of-Potential-Biotechnological-Products.pdf
princessbliss09
 
PDF
Blood Collected straight from the donor into a blood bag and mixed with an an...
UsamaJaved91
 
BUSINESS CYCLE_INFLATION AND UNEMPLOYMENT.pptx
TasmiaThalil
 
basic introduction to research chapter 1.pptx
sangeethanagaraj8
 
Slide gioi thieu VietinBank Quy 2 - 2025
hoadm5190
 
1911 Gold Corporate Presentation Aug 2025.pdf
Shaun Heinrichs
 
Module 3 - Functions of the Supervisor - Part 1 - Student Resource (1).pdf
OmoobaOrun1
 
Hand book of Entrepreneurship 4 Chapters.docx
DrSubinKMohan
 
Astra-Investor- business Presentation (1).pptx
diksha27bhardwaj
 
CTG - Business Update 2Q2025 & 6M2025.pptx
HcTrSoros
 
Board-Reporting-Package-by-Umbrex-5-23-23.pptx
Pars Six Sigma Excellence
 
THE COMPLETE GUIDE TO BUILDING PASSIVE INCOME ONLINE
Malcolm86
 
Daniels 2024 Inclusive, Sustainable Development
CMassociates
 
Robin Fischer: A Visionary Leader Making a Difference in Healthcare, One Day ...
The lifescience magaizne
 
Booking.com The Global AI Sentiment Report 2025
agatadrynko
 
Satish NS: Fostering Innovation and Sustainability: Haier India’s Customer-Ce...
red402426
 
Principles of Marketing, Industrial, Consumers,
efranciscaantoinette
 
Solara Labs: Empowering Health through Innovative Nutraceutical Solutions
The lifescience magaizne
 
How to Get Business Funding for Small Business Fast
Jake Thornhill
 
Lecture 3344;;,,(,(((((((((((((((((((((((
princessbliss09
 
PMB 401-Identification-of-Potential-Biotechnological-Products.pdf
princessbliss09
 
Blood Collected straight from the donor into a blood bag and mixed with an an...
UsamaJaved91
 
Ad

How to recover from your next data breach

  • 1. How to recover from your next data breach
  • 2. Put Together a Response Team A data breach demands a comprehensive response. Knowing who will be part of your response team and assigning their primary tasks ahead of time will help you quickly take appropriate action. The team should be enterprise-wide and include key members of the executive team and board of directors, the head of IT, security experts, as well as representatives from your legal, communications and HR departments. It is important to remember that it is not just your company’s data that has been compromised. Employees need to know what risk they are at and what they need to do. Vendors and clients who were impacted need to be informed. Having a comprehensive team in place will help create a multifaceted plan that addresses all the issues a data breach may create.
  • 3. Identify the Source and Spread In the aftermath of an incident, you do not want to take any steps that might spread the problem inadvertently. Keep focus on identifying the source of the attack and isolate the affected servers and systems. Infected machines should be analyzed to determine if a full operating system restore is required or if they can be cleaned using anti-ransomware software. As ransomwares like Ryuk evolve, creating a hierarchy of attack on a network, this isolation becomes even more crucial. This latest generation of attacks can be more effective, faster, and spread wider than those of the past. Ensuring your team is educated and updated on the latest variants will help them to know where to start looking once a breach occurs.
  • 5. If a ransomware attack happens and employees find themselves locked out of their data, the gut reaction may be to reload from backed-up files. That is what they are there for after all. There is a good chance, however, that these files have also been targeted by the attack, leaving them encrypted, unrecoverable or also infected. Always train employees to scan backup files before attempting a recovery. Digital storage systems that enable point-in-time recovery can be invaluable in reducing downtime from a ransomware attack that manages to encrypt data and backup files. These systems enable security and IT teams to roll back to a restore point before the infection, which should recover the bulk of the data in a single step. Since these systems track changes at the block level, they are able to recover quickly. Back-ups of the most critical files and data should be kept in air-gapped storage systems. This ensures that at least one copy of the data is always housed on servers that are isolated from the network and will remain unaffected by an attack.
  • 6. Don’t Cover It Up When it comes to data breaches of any kind, from a DDoS attack to malware, there can be a perceived negative stigma. There may be fears that the breach will make your company look careless and undermine the trust of clients and partners. There may be an impulse toward keeping quiet. After all, if no one knows about it, it didn’t really happen. The truth is these sorts of attacks are common. A breach is not a sign of corporate weakness, it is an unfortunate reality of existing in the digital age. The worst thing you could do after a breach is to keep it quiet. In many cases, your company has a legal duty to notify law enforcement or privacy regulators. Every attack needs to be understood so as to give White Hats a chance to bring equilibrium to that ebb and flow of vulnerability. Reporting is the first thing you can do to protect your organization from a subsequent attack.
  • 7. In the aftermath of a breach, your company’s leadership will be focused on cybersecurity. That presents an opportunity for a wide-ranging evaluation of your current security practices, procedures and tools. Don’t waste it. Protect Your Network from Another Attack
  • 8. SILO Compliance Systems 1067 South Hover Street, #E-172, Longmont, Colorado, 80501