The Equifax data breach, which affected some 143 million people, is just the latest high-profile incident reported by a large corporation. Verizon announced that 14 million customer accounts were exposed; Bell Canada said the data of 19 million customers was hacked; education platform Edmodo said the data of millions of its 78 million users were sold on the dark web. And Yahoo’s 2013 data breach reached epic proportions this month, when it announced all 3 billion customer accounts were hacked in that attack four years ago.
The good news -- and there is good news -- is that companies are stepping up their efforts to protect data. Ten years ago, information security was seen chiefly as an IT topic. Now, it has been elevated to the status of a strategic boardroom issue. I attend a monthly meeting of corporate board members, and at nearly every event there is discussion about cybersecurity and how to prepare – at the board level –for cyberattacks.
There’s a saying in the IT world: There are two kinds of companies, those that know they’ve been attacked, and those that don’t know they’ve been attacked. With that in mind, here are five critical things every company can do to prepare for a cyber crisis.