Blog Name

DEPARTMENT OF JUSTICE PUBLISHES BEST PRACTICE TIPS TO DEAL WITH CYBER INTRUSION

by

Every business owner, large or small, should take time to read the Department of Justice’s Best Practices for Victim Response and Reporting of Cyber Incidents. In today’s cyber world, it seems we cannot go a day without reading about another cyber security incident and its ramifications. For example, the Seventh Circuit Court of Appeals just last week certified a class action based upon mere allegations of future harm as a result from the Neiman Marcus data breach. In addition, the DOJ recently disclosed its successful involvement in the largest coordinated enforcement of on line organized cyber crime. This international investigation targeted a group known as Darkode where online cyber hackers shared and sold secrets to hack into other organizations’ computers. Against this backdrop, reviewing the DOJ’s suggestions regarding preventing cyber intrusion would be well worth your time as would be a quick review of my earlier blog post on an employer’s responsibility if you are hacked under the Pennsylvania Breach of Personal Information Act.

Key elements of the DOJ’s suggested response plan prior to intrusion include:

  • Having a well-established actionable plan;
  • Identify your company’s most valuable information; and
  • Have appropriate technology in place to shut down intrusion.

Key elements of the DOJ’s suggested response plan immediately after intrusion include:

  • Make initial assessment;
  • Take steps to minimize continuing damage;
  • Record all information;
  • Notify people within Organization, law enforcement and other victims; and
  • DO NOT use the compromised system to communicate.

At Danziger Shapiro, P.C. we urge our clients to meet with their technology professionals and develop a plan that deals with both keeping cyber criminals at bay and what to do in the unfortunate event you are hacked. We then work with our clients to make sure that their cyber defense plans are properly worked into employee handbooks and other materials as appropriate. Remember, you do not want to disclose all of your cyber security efforts to your employees and inadvertently provide a roadmap to defeat the measures you have taken. On the other hand, proper training will go a long way in effectively protecting your company’s’ assets. Feel free to contact us at Danziger Shapiro to discuss this or any other aspect of your business organization.

This entry is presented for informational purposes only and does not constitute legal advice.

Contact Information
1515 Market Street
Suite 1200
Philadelphia, PA 19102
Telephone: (215) 545-4830 Fax: (215) 545-6710
Although our office is located in Philadelphia, we serve clients all over Pennsylvania and New Jersey including, but not limited to, the cities/counties of: Philadelphia, Montgomery County, Villanova, King of Prussia, Ardmore, Exton, Abington, Ambler, Bala Cynwyd, Conshohocken, Horsham, Lansdale, Bucks County, Langhorne, Doylestown, Chester County, West Chester, Delaware County, Media, Newtown Square, Mount Laurel, Deptford, Mount Holly, Moorestown, Cherry Hill, Camden County, Cumberland County, Atlantic County, Burlington County, and Gloucester County.

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Please do not include any confidential or sensitive information in a contact form, text message, or voicemail. The contact form sends information by non-encrypted email, which is not secure. Submitting a contact form, sending a text message, making a phone call, or leaving a voicemail does not create an attorney-client relationship.

Copyright © 2024, Danziger Shapiro, P.C.
JUSTIA Law Firm Blog Design