PR & Press After An Attack (£)
Directors must review how the business decisions will be examined after a cyber attack takes place. Following the data loss or serious internal breach, the related stockholders, clients, PR relations and media outlets– will often suggest that the problem should be laid at the door of the CIO, CEO, HR, et al.
The noise of the public relations can be overwhelming for most businesses and a strategy and plan to deal with this is very necessary and must be frequently discussed within the Board and senior management and then to all employees so that all know the outcomes and probable consequences of the next serious cyber attack.
Last October TalkTalk tried to get credibility back with its clients and customers, after, the company, had been attacked by an Islamic hacking group. Around the same time both British Gas and M&S websites were taken down for a couple of hours. Soon under European Union Data Protection regulations it will be required that business have a PR plan in place.
TalkTalk had certainly tried to engage with its customers, which was exceptional and thoughtful compared to other business’s reaction when they were attacked and hacked many of them try to hide the event and outcome. Often the problem does not go away and reoccurs when a dispirited employee sometimes let’s the cat out of the bag.