From The Desk Of Charles Leaver, Ziften CEO
A business suffers a cyber attack. The system administrators learn about the attack, they wish to know more about it, they send their IT group to attempt and stem the attack and recuperate lost data. This is what occurs after lots of companies have been breached, but then the business typically fails to take the next essential action: the proactive informing of their customers that they have experienced a cyber attack. There have been numerous cases where it has been challenging to get a company to reach out to its consumers and it takes a lot more time and threat than it ought to do.
There is a tendency now that business that have been breached simply do not wish to inform those that have been affected by the attack– their clients– that the attack occurred according to the Portland Press Herald. The factor that companies do not want to tell their customers is completely self-centered. They are concerned that the track record of their company will be damaged if they tell the world about the attack so they always wish to keep this news in house. Both Target and Neiman Marcus did this and waited far too long to inform their clients that they had actually been victims of a cyber attack.
It Is Just Counterproductive To Keep Cyber Attack News Far from Your Clients
It is completely irresponsible to hold back on informing your customers about a cyber attack and it can likewise work against you. If there is a long space between the attack happening and businesses confessing that it took place then it can appear that the company is being dishonest and is not competent to secure client data. In spite of this, companies that have experienced an attack continue to keep this info from their consumers. JP Morgan Chase was an example where there was a delay of around 4 months before they told their customers that they had suffered a significant cyber attack. U.S. Public Interest Research Group consumer program director, Ed Mierzwinski, said there is a lot of work to do when it concerns telling clients that a breach has taken place.
He said that clearing your name was a “headache”. He likewise said that it takes a great deal of time and the business does not earn money for doing this.
Regardless of the time and effort involved, it is essential that companies adopt a full recovery process and that they notify their consumers about the cyber attack every step of the way. If the thought of telling your consumers that you have actually been attacked does not appeal then you can prevent attacks from occurring in the first place. If a rigid endpoint detection and response system is installed then a company can safeguard their network and make sure that they will not suffer from a cyber attack and put their client data at risk.
Protect your business