Get a Quote

What To Do After a Cyberattack

IT Company in Chicago

Has your business experienced a cyber attack? An IT Company in Chicago can help.

While business owners might not like to think about it, cyberattacks are extremely common, and only becoming more prevalent and damaging. An IT company in Chicago can help you reduce your risk of attack, but it is also important to know what to do should an attack occur. Even with the greatest cybersecurity measures, unfortunately, breaches and attacks are still possible. 

Unfortunately, while 43% of cyberattack victims are small businesses, only 14% are prepared to defend themselves. If your network is attacked by a cyberhacker, follow these steps to respond properly. By calmly and quickly taking action, you can reduce damage and determine how to protect yourself in the future.

1. Don’t Panic

When you panic, you don’t think rationally. Make sure you and your team or your hired IT company in Chicago are calm and collected. A clear mind will make better decisions and make it easier to move in an intelligent manner.

2. Contain the Breach

Before you delete everything, you need to attempt to contain the breach in a way that preserves evidence and helps you determine how the breach occurred. First, determine which servers were compromised and contain them as quickly as possible. You may be able to contain the breach by:

    • Disconnecting your internet
    • Disabling remote access
    • Maintaining your firewall settings
    • Installing any pending security updates
    • Changing passwords

If you have backup servers available and undamaged from the attack, have your response team switch to them immediately so you can continue working while you resolve the issue.

3. Assess The Breach

Now that the breach has been isolated, you or your It company in Chicago should begin to investigate the breach. Determine whether the attack was part of a broader attack on other companies or departments, or if you were the only victim. 

To determine where the attack came from, try checking your security data logs through your firewall or email providers, your antivirus program, or your Intrusion Detection System. Identify who was affected, and determine what needs to be done to get them up and running again as quickly as possible.

Contact the heads of any relevant departments so they can inform their team on the attack and what they need to do. This includes HR, PR, and potentially any legal teams, in case there are any legal ramifications. 

4. Document

To reduce the risk of an attack happening again, your IT company in Chicago should thoroughly document all findings, including their process, who was affected, and where the attack came from. This will help you analyze more information about the attack, address any regulatory or legal requirements, and make necessary improvements to your security moving forward.

5. Contact Customers

Your PR or outreach department needs to contact all customers who have been impacted by the breach as soon as possible. Your customers may need to update any passwords or PIN numbers if their private information was exposed. 

It’s very important to emphasize your willingness to be transparent and take great measures to specifically address questions and be available to affected individuals. Time is of the essence when it comes to notifying customers, as a cyberattack can be devastating to your reputation. You may lose customer trust after an attack, but communication can be key to maintaining positive relationships. 

A cyber attack on your Chicago business is very stressful, but an IT company can help you plan ahead and reduce risk should it occur. If you are looking for an IT partner in Chicago fill out a short form and tell us more about your security measures or if it’s an emergency let us know and we’ll get back to you ASAP with support!

See Page in PDF Format


We can help. Whatever your technology problem is, chances are, we've seen it before.