Charles Leaver – Do Not Make A Secret Out Of A Cyber Attack

Ziften CEO Charles Leaver Writes


A business suffers a cyber attack. The system administrators learn about the attack, they want to know more about it, they send their IT team to attempt and stem the attack and recuperate lost data. This is exactly what happens after many companies have actually been breached, but then the business often fails to take the next important action: the proactive notifying of their clients that they have experienced a cyber attack. There have been many cases where it has actually been tough to get a company to connect to its clients and it takes a lot more time and coercion than it should do.

There is a propensity now that business that have actually been breached simply do not wish to inform those that have been impacted by the attack– their consumers– that the attack occurred according to the Portland Press Herald. The reason that businesses do not wish to tell their clients is completely selfish. They are concerned that the credibility of their company will be harmed if they inform the world about the attack so they always want to keep this news in house. Both Target and Neiman Marcus did this and waited far too long to inform their consumers that they had actually been victims of a cyber attack.

It Is Just Counterproductive To Keep Cyber Attack News Away From Your Clients

It is totally irresponsible to hold back on telling your consumers about a cyber attack and it can also work against you. If there is a long space between the attack occurring and businesses confessing that it took place then it can appear that the company is being dishonest and is not proficient enough to safeguard customer data. Regardless of this, businesses that have experienced an attack continue to withhold this info from their customers. JP Morgan Chase was an example where there was a hold-up of around 4 months before they informed their customers that they had actually suffered a major cyber attack. U.S. Public Interest Research Group consumer program director, Ed Mierzwinski, said there is a great deal of work to do when it pertains to informing customers that a breach has actually taken place.

He said that clearing your name was a “nuisance”. He also stated that it takes a lot of time and the company does not make money for doing this.

Despite the time and effort involved, it is necessary that businesses adopt a full recovery process and that they notify their clients about the cyber attack every step of the way. If the idea of telling your consumers that you have been attacked does not appeal then you can avoid attacks from taking place in the first place. If a rigid endpoint detection and response system is installed then a company can secure their network and be sure that they will not experience a cyber attack and put their consumer data at risk.




Charles Leaver