Whether hackers stole data from a company server, an employee accidentally posted information on the internet or physical devices holding sensitive files were stolen or lost, a data breach is a serious problem with potentially long-term consequences. People whose personal information is exposed face elevated risk of identity theft for years to come, and the business that suffered the attack must deal with regulatory fines, financial loss and reputation damage.
The best way to mitigate the effects of a data breach is to prevent it from happening in the first place. This starts with a holistic approach that protects against multiple points of vulnerability. It includes password protecting every device and implementing two-factor authentication, as well as regular updates to software and patches. Another critical security measure is to use monitoring solutions that identify rogue actions on the network, such as abnormal API (application programming interface) calls or changes in system communication patterns.
Once a company experiences a breach, it must work with forensics experts to figure out exactly what happened and how it occurred. This must include analyzing backup or preserved data, as well as reviewing communications patterns to find out what is being accessed and sent outside the network.
Companies must also immediately take steps to contain the breach. That may involve calling people whose information was compromised and notifying credit card or other financial institutions to keep an eye out for suspicious activity. It can also be a good time to strengthen passwords and implement more advanced security measures, such as encryption for data “at rest” and in motion.
About the Author
