Your Database Was Breached: Now What?
Don't rush to notification before getting enough information from your investigation, and when you do go public, be as open as possible
By Ericka Chickowski, April 08, 2011 Security Darkreading
With high-profile breaches such as the ones suffered by RSA, Comodo, and Epsilon cluttering the newswires these days, even the most secure enterprises are given pause to think that they could be at more of a risk of a database breach exposure than they initially thought. And, yet, according to post-data breach response consultants, the majority of organizations today simply do not make plans for how they'd handle a big database exposure if they were struck.That has to change, says Tom Quilty, CEO of BD Consulting, a data breach response firm. "People used to laugh at me when I said this, but it is not a matter of if, but when, a data breach will affect your organization," he says.