[et_pb_section fb_built=”1″ _builder_version=”4.17.4″ _module_preset=”default” global_colors_info=”{}” theme_builder_area=”post_content”][et_pb_row _builder_version=”4.17.4″ _module_preset=”default” global_colors_info=”{}” theme_builder_area=”post_content”][et_pb_column type=”4_4″ _builder_version=”4.17.4″ _module_preset=”default” global_colors_info=”{}” theme_builder_area=”post_content”][et_pb_text _builder_version=”4.17.4″ _module_preset=”default” hover_enabled=”0″ global_colors_info=”{}” theme_builder_area=”post_content” sticky_enabled=”0″]<\/p>\n
!Right now, there\u2019s a crypto-locked server in the lab in our Kinetics Auckland Office.<\/p>\n
It\u2019s not from one of our clients, but a business that\u2019s come to us, after the event, asking for help. We are busy rebuilding it and restoring the data and configuration to the server and business’s PC’s.<\/p>\n
They have insurance, but that also added to their downtime. The insurer took all the client\u2019s kit and did a heap of forensic investigation before releasing it for rebuild. Only then did it come to us. By the time we finish rebuilding, this company will have been without a system for two or more weeks!!<\/p>\n
In our busy work lives, with all the various challenges that compete for our attention, it is easy to forget that crypto-locking is real and extremely disruptive. As I drove into the Kinetics office this morning, I heard on the radio that reported ransomware attacks in New Zealand have doubled every year since 2019.<\/p>\n
We are also hearing more examples of insurance companies checking that organisations<\/a> have taken reasonable care before they settle claims. All businesses need a managed-cyber-security regime, like KARE for Security,<\/a> that is multi-layered, and designed to reduce your risk.<\/p>\n No one can promise to prevent you from being hacked, but we can promise to reduce your risk and make it less likely<\/strong>.<\/p>\n We know it’s frustrating that as hackers become more sophisticated, the protections you use have to increase, which slowly increases costs as well.<\/p>\n The good news is that we know it works.<\/strong> For example, we recently had a KARE for Security client using one of our KARE supplied Firewalls. They had a cyber-event – a \u201cbot\u201d on their network. Our KARE tools sent us an alert and we jumped straight in. We quickly we found that they had given their WiFi key to a visitor, and that visitor\u2019s laptop was infected<\/strong>! The good news is that KARE for Security was able to protect the client, and that having a separate \u2018guest\u2019 network for visitors protected the business as designed. (Never give a visitor with an unknown device access to your production WiFi network)<\/p>\n [\/et_pb_text][\/et_pb_column][\/et_pb_row][et_pb_row _builder_version=”4.17.4″ _module_preset=”default” global_colors_info=”{}” theme_builder_area=”post_content”][et_pb_column type=”4_4″ _builder_version=”4.17.4″ _module_preset=”default” global_colors_info=”{}” theme_builder_area=”post_content”][et_pb_text _builder_version=”4.17.4″ _module_preset=”default” hover_enabled=”0″ global_colors_info=”{}” theme_builder_area=”post_content” sticky_enabled=”0″]<\/p>\n Firstly, make contact with your IT support, and set up an emergency response team.\u00a0 Most insurance includes some recovery expertise, so they should be one of your first phone calls.<\/p>\n Secondly, the team needs to contain the breach. How large is it, what is impacted, and how can you be sure that the vulnbnerability is no longer present and the hackers can’t get back in?\u00a0 For\u00a0 example, you may want to turn things off and isolate them on their own network away from your ‘clean’ IT assets, and lock out all user credentials that aren’t absolutely needed.\u00a0 \u00a0Start changing passwords for the remaining users.<\/p>\n Next, consider the Privacy Act, and your obligations to communicate with any stakeholders whose data has been impacted.\u00a0 You might need to work with your HR team where your people are concerned , and your comms or PR support as you reach out to larger groups of people.<\/p>\n At all times, remember that you are not alone! Every organisation is under the same threat and many blue-chip names have succumbed, in some cases more than once.\u00a0 All any of us can do is reduce the risk, and to do so within the budget that fits your tolerance for risk and cost.<\/p>\n <\/p>\n <\/p>\n [\/et_pb_text][\/et_pb_column][\/et_pb_row][\/et_pb_section]<\/p>\n","protected":false},"excerpt":{"rendered":" !Right now, there\u2019s a crypto-locked server in the lab in our Kinetics Auckland Office. It\u2019s not from one of our clients, but a business that\u2019s come to us, after the event, asking for help. We are busy rebuilding it and restoring the data and configuration to the server and business’s PC’s. They have insurance, but […]<\/p>\n","protected":false},"author":5,"featured_media":9754,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_et_pb_use_builder":"on","_et_pb_old_content":"","_et_gb_content_width":"","footnotes":""},"categories":[4,5],"tags":[],"class_list":["post-9749","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news","category-security"],"_links":{"self":[{"href":"https:\/\/new.kinetics.co.nz\/index.php?rest_route=\/wp\/v2\/posts\/9749","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/new.kinetics.co.nz\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/new.kinetics.co.nz\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/new.kinetics.co.nz\/index.php?rest_route=\/wp\/v2\/users\/5"}],"replies":[{"embeddable":true,"href":"https:\/\/new.kinetics.co.nz\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=9749"}],"version-history":[{"count":0,"href":"https:\/\/new.kinetics.co.nz\/index.php?rest_route=\/wp\/v2\/posts\/9749\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/new.kinetics.co.nz\/index.php?rest_route=\/"}],"wp:attachment":[{"href":"https:\/\/new.kinetics.co.nz\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=9749"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/new.kinetics.co.nz\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=9749"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/new.kinetics.co.nz\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=9749"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}So, what should you do when you are the victim of a cyber-attack?<\/h2>\n