Print PDF

What to Do—and What Not to Do—in the Aftermath of a Cybersecurity Attack

Among the most-important: Don’t create fear and uncertainty by firing the people who may know best how to recover from the attack
The Wall Street Journal

Partner Justine Philips discusses how companies should respond to a cybersecurity attack. She emphasizes the importance of developing new policies and recording the breach and how it was resolved to “ demonstrate a business has learned and will do better next time.”  She explains that, “Regulators and consumers want to see that companies took reasonable measures to contain, investigate and remediate the event,” and that a record of these changes is essential to “ensure the system is threat-free again, without backdoors.”

Practice Areas

Jump to Page

By scrolling this page, clicking a link or continuing to browse our website, you consent to our use of cookies as described in our Cookie and Advertising Policy. If you do not wish to accept cookies from our website, or would like to stop cookies being stored on your device in the future, you can find out more and adjust your preferences here.