Whether flood, fire, or storm, businesses in affected areas often find themselves targets of a second disaster, as cybercriminals look to take advantage of what may be a temporary reduction in effectiveness in cybersecurity. With disruptions in site access, and key resources often unavailable or unable to access critical services, companies can find themselves ill prepared for an attack. Says Senior VP of IT at First Onsite Property Restoration Mark Hubbard of these cybercriminals, to Insurance Business Magazine, “They take advantage of the fact that there is tension in the organization and attention is focused on recovering from a catastrophic situation.”
In response, to ensure cybersecurity readiness during and after a disaster, Hubbard recommends making sure cybersecurity is strongly considered while building your disaster recovery plan.“The plan should not only cover the technology infrastructure that’s in place to support the business, it should also cover the business processes of the organization and the employees executing those business processes,” Hubbard told Insurance Business.
While good practice in general, it’s particularly important for cybersecurity during times of disaster recovery, as employees may be distracted and preoccupied, and thus more prone to missing signs of a phishing or social engineering attack. With resources often already stretched thin, anything that can be done to prevent a second disaster is critical.
Source:
