Isn’t this awkward? A cybersecurity software provider botches an update, and scammers exploit it. Scammers are taking advantage of the Crowdstrike mess-up.
Scammers set up fake websites and sent phishing emails promising a quick fix to the problem. There isn’t one, but the damage varies. One of the banks I use was up and running by noon on Friday, but Delta Airlines continued to struggle three days later.
Crowdstrike is the anti-scam software provider that bungled a software update that affected Windows users. If your business runs Windows, you may still struggle with the fallout. What should you do?
Small businesses don’t have access to experts to speed recovery like more prominent companies. The fix for this requires figuring out the manual process posted on Crowdstrike’s blog, which may be difficult unless you’re tech-savvy.
Are you not concerned because the extent of this problem is likely a one-off? That’s not true. Several incidents involving Microsoft and cybersecurity software suppliers have occurred in the last ten years.
It’s best to plan for future incidents. An IRP or incident response plan decreases the chaos and gets you back on track sooner. Put one together as quickly as possible.
Pull a team together and define each member’s role. Print out their contact information and role and distribute them. You may not have access during an incident.
Select a technology firm to help investigate any incidents and provide support. Designate an Incident Manager, a Technology Manager, and a Communications Manager among the team. The Incident Manager leads the team.
Your team should review the IRP quarterly and adjust if an incident occurs or cybersecurity technology changes. An incident will occur, and a plan minimizes the damage.
Author: Kris Keppeler is a writer who finds technology fascinating and loves humor. She writes on Medium.com. She is also an award-winning podcast producer who enjoys telling funny stories. Follow her on X (formerly Twitter) @KrisNarrates or on LinkedIn.
Small Business Solutions 