You’ve fallen victim to a Cyberattack. What next?

The mainstream news rarely profiles small business hacking stories. But it happens more frequently than you might imagine. A recent NCSC study reports that 38% of cyber-attacks are against companies with fewer than 250 employees. Worryingly, Business in The Community (BITC) shares that nearly half of small businesses have no cybersecurity plan. This reality makes small businesses easier targets for cybercriminals.

Phishing is among the most common attacks, tricking individuals into downloading malicious files onto their computers or network systems and then using the malware to extract data for sale or to demand a ransom.

A successful cyber-attack can have far-reaching legal, economic, and psychological implications adding to the many challenges small businesses face. Without the proper controls, you increase your risk of being hacked. Therefore, business owners must employ the necessary tools to protect their organisations from harm.

Cyber-attacks aren’t always easily noticeable; some hacks can go months before surfacing. However, if you’re unsure of the characteristics of a data breach. Here are some common indicators:

  • Your computer is malfunctioning.
  • Your team members are complaining of the same issues.
  • Inability to access your work documents.
  • A pop-up message is demanding a ransom.
  • Your contacts inform you of non-typical messages originating from your email or domain.
  • Unrecognised transactions in your bank account.
  • Passwords changed without your knowledge.
  • Strange pop-up links on your devices
  • Ghost software installations
  • If your organisation has yet to implement a cybersecurity incident response plan, here are a few things you should do if you come under attack.

Remain calm and follow the next steps

It is vital to remain calm and swiftly follow through on the subsequent actions.

Disconnect affected devices from the internet and your company network.

Removing the device(s) from your network and connection to the internet will help to contain the threat. It reduces the ability of the malware to propagate throughout your company systems and causes further damage.

Contact your IT team or cybersecurity expert about the cyberattack

A cybersecurity professional, in-house or external, can offer hands-on support and valuable practical advice. Communicate the details of the events clearly to enable the professionals to respond appropriately. An external cybersecurity support team can be a valuable resource when investigating the nature of the attack and its impact.

Report the cyberattack to Action Fraud

Action Fraud can help during a live attack. If you are a charity, private or public organisation, you can contact Action Fraud using their emergency helpline on 0300 123 2040, which is available 24×7.

Refrain from using the affected devices

It might be tempting to continue with your regular course of business. However, any attempt to use the devices could worsen the issue and cause further complications. It is, therefore, beneficial to stop and rely on the guidance of experts.

Small businesses perform essential functions across all sectors of our economy. As the threats to business increase, so must our ability to adapt and respond. Preparing for a cybersecurity incident will help you better manage the outcome. Mishandling your response to a breach can prolong the incident, putting your organisation at greater risk. On the other hand, some scenarios are outside our control. And for those moments, it is essential to know that help is still available.

Dane Ellis

Sentriware, CEO & Founder
Cybersecurity Evangelist

 

For further information on cybersecurity or digital transformation Contact Us