RANSOMWARE – Vital Questions for a Business in an IR
▪ How long until we are operational? ▪ What is the status of our backups?
▪ Was any of our data exfiltrated? If so, what? ▪ Should we contact the threat actor, and if so, should we pay? - Can we pay? (OFAC restrictions) ▪ Will we have any reporting requirements? If so, when and what? ▪ Should we notify law enforcement? ▪ Do we need to notify our customers / vendors / suppliers / board of directors? If so, when and how? ▪ Is this covered by, or will it affect, insurance?
9
Made with FlippingBook - Online catalogs