When cyberattacks leave systems down and backups unavailable, organizations may need to consider paying ransom to get systems running again, particularly if lives are at stake. However, unplugging systems as a reaction risks losing forensic data. Using “tiered resiliency” – a combination of snapshots and backups – is a recommended recovery strategy. Handling of credentials, patch management, and vulnerability scanning should be reviewed after an attack, as well as learning from the incident itself.
Ontario Divisional Court Rules Forensic Reports as Non-Privileged
Hello folks! I was having a peruse around the cyber world when I spotted an interesting conversation on Infosec Exchange – a spot of legal
