SANS Digital Forensics and Incident Response Blog: Tag - communications

Public Communications Are Critical to Computer Security Incident Response

Law, Forensics and Public Relations

Historically IT security and incident response programs did not include much of a public communications component. Enterprises spoke little about attacks or breaches of security; they quietly focused on defense, investigation and remediation.

Law and politics have changed the game. Since 2003 many laws such as California's Senate Bill 1386 have required data holders to notify constituents and sometimes government authorities when private data have been compromised. For many private and government organizations, their data security posture has become a subject of keen public import. Lawsuits and government investigations are becoming more common.

Today when security incident happens, public communications can be critical to an effective response.

A high profile example is Google's announcement that it was the target of an attack allegedly from China. Google views the incident as much more than just a

... Continue reading Public Communications Are Critical to Computer Security Incident Response