The Life Labs Hack; Managing a Cyber-attack PDF

Preview

Summary

The LifeLabs Hack; Managing a Cyber-attack LifeLabs could have prevented and contained the breach by training employees, limiting employee access to data, and implementing software that made sure data is secured and protected. The organization should have educated employees about cyber attack preven...

Description

The LifeLabs Hack; Managing a Cyber-attack

1. LifeLabs could have prevented and contained the breach by training employees, limiting employee access to data, and implementing software that made sure data is secured and protected. The organization should have educated employees about cyber attack prevention and the risks associated with them since it can help mitigate cybersecurity breaches. LifeLabs should inform employees that using unsecured networks while working and sharing company information with unauthorized people is detrimental to the organization. Also, the company should have restricted access to sensitive information since it can limit the scope of an insider attack. Employees should only be given access to the information they need. Lastly, LifeLabs should have implemented firewalls, intrusion detection systems, and anti-malware software to prevent malicious hackers from leaking confidential data. 2. It was not appropriate for LifeLabs to pay the ransom. There are numerous risks associated with paying ransomware. LifeLabs was fortunate enough to regain access to its data, however, in most cases paying a ransom does not guarantee the security of data. By paying a ransom LifeLabs has emboldened cybercriminals and increased the scope of potential security breaches. As alluded above there is no way to ensure that an organization will regain access to its data. LifeLabs took a huge risk by paying ransomware and has permanently made themselves a target of cyberattacks. 3. LifeLabs is obligated to ensure the safety of its customer’s data. LifeLabs must provide cybersecurity protection to its customers and employees. Customer’s credit should be monitored regularly. Customers should be provided with identity theft insurance to prevent potential damages related to fraud and identity theft. The organization must compensate any customer or employee that has been affected by the breach. LifeLabs should enforce mandatory employee training where employees are educated about the risks associated with cyber-attacks. The organization must improve its security systems and implement stricter policies to protect data and prevent future cyber-attacks. 4. Due to the cyber-attack, LifeLabs will potentially suffer from many long-term intangible business impacts. The cyber-attack may damage the company’s reputation as there is a lack of trust between the customers and the organization. The cost of disruption in normal operations may affect the company immensely. Allocating resources to repair  facilities,  equipment, and building temporary infrastructure will disrupt operations. Damaged reputation, clean-up costs, and disruption in operations will create a decline in profits. Furthermore, there may be a loss of intellectual property, future opportunities to collaborate with other companies, and potential lawsuits that will negatively affect the company.

References

C. (2019, October 15). What Are The Typical Costs To A Business From A Cyber Attack? Cytelligence. https://cytelligence.com/what-are-the-typical-costs-to-a-business-from-a-cyber-attack/ Goud, N. (2018, July 19). Ways to prevent cyber attacks on your company. Cybersecurity Insiders. https://www.cybersecurity-insiders.com/ways-to-prevent-cyber-attacks-on-your-company / Laudon, K. C., & Laudon, J. P. (2020). PCL Construction: The New Digital Firm. In Management Information Systems: Managing the Digital Firm (16th ed., pp. 3–5). Pearson Education....