The December 2011 edition of The PPC Accounting and Auditing Update published a list of guidelines to follow if your business is hacked. The following list is based on that publication:
Don’t turn off the Internet connection or detach the affected computer from your network as doing so can erase evidence that will help investigators to determine what information was stolen and where the information was sent.
Contact both local law enforcement and a forensic investigations company. Experts should be employed to find the software used to hack your system and determine what type of information the program was trying to steal from your systems.
Let professionals assess the extent of the breach. Do not assume that because the infected computer has been cleaned up or removed that the attack is over. Assess all computers and systems to ensure that the breach has not spread.
Document your reaction to the breach and record every time someone has access to a compromised computer or server. Proper response to a security breach is essential for your legal protection.
Forty-six states have passed laws regarding reporting requirements when there is a potential that records have been exposed to a possible data breach. In addition, the federal Department of Health and Human Services has their own such reporting requirements. Therefore, you must determine whether or not your breach warrants disclosure to your customers and employees and if so, what information you are required to disclose.
No comments:
Post a Comment