Archives for December 2018

According to the Identity Theft Research Center, 2017 saw a record-high in data breaches. The statistics show that organizations are bound to experience a security incident sooner or later; what is important is that you are adequately prepared. Here are three essential steps to building an incident response plan.

Create a plan
A good incident response plan (IRP) should begin to develop months in advance. Analyze your organization’s IT environment and determine which systems, services, and applications are the most critical to maintaining operations. Then, identify what crucial data must be protected in the event of an incident. By developing a plan of action in advance, you will find any gaps in policy, technical capability, or communication that may require immediate attention.

Practice
In the case of a breach, it is essential to act quickly and swiftly. If an incident should occur, you don’t want to appear flustered or disorganized to your customers. With simulation exercises, you can put your plan in action to ensure it your cyber security solutions would be effective in a real situation.

Document and communicate responsibly
Accurate documentation and clear communication of your response activities will be necessary for legal purposes (and as a courtesy to your customers). When going public with the details of the breach, it is essential that you are prompt and clear about how the issue was caused, the actions you took to respond, and what will be done to prevent the situation from recurring.

There are many different types of malware, and some of the most common include viruses, Trojans, and worms. While the terms are often used interchangeably, each of these types of malware has significant differences.

Viruses
A computer virus is a malicious program that can cause damage by creating, moving or erasing files. Opening an infected email attachment is the most common way for your machine to catch a computer virus.

Trojans
Named after the mythological Trojan Horse, a Trojan is a malicious program which misleads users of its true intent. It is typically hidden in an email attachment or download that appears to be authentic. When the user clicks the attachment or downloads the program, the malware hidden inside is transferred to the user’s device. Once inside, a Trojan can cause damage by deleting files, stealing data, and more.

Worms
A computer worm is a program that can replicate itself and spread to other computers. While it cannot alter any files on a machine, it can cause harm consuming all of the endpoint’s available memory or disk space as it multiplies. In this case, endpoint protection software is essential as it can locate and destroy worms before they have a chance to replicate or spread to other machines.