Google Plus Facebook LinkedIn Twitter Vimeo RSS

Guest view: Launching a professional counterattack to a big hack

By ,
(Photo / )

The aptly named “WannaCry” ransomware attack that paralyzed computers across the globe the day after Mother's Day 2017 is believed to be the biggest online extortion assault ever recorded.

It’s disconcerting to know that security experts believe the next massive ransomware attack is already underway – it just hasn’t manifested itself yet.

Cybercrime prevention comes in many forms, and includes software updates and anti-virus protection, extra caution with emails, firewalls with advanced threat protection and data backups. But if the ounce of prevention fails, what do you do after an attack?

Assemble a response team

It is critical to create the right response team if you are a victim of a hack. It should be guided by an attorney, a forensic accountant, and cybersecurity expert. The goal is for this team to work with upper-level management to quickly quantify the damage and take steps to prevent future attacks.

Remember, dealing with a data breach is about fixing the problem as well as shielding the company from liability. Having an attorney on the team ensures that as your business deals with the issue all communications become “work product privilege,’’ and thus are protected from discovery in a lawsuit.


Following a breach, companies are legally required to save data in its original form, including information on home and office computers, work and personal emails, databases, text messages, the cloud and backup systems.

It’s best to assume that all investigations wind up in court, whether criminal, civil or both. If your experts need to testify, it is essential that all electronic evidence is properly preserved.

“Chain of custody” logs will document how data was gathered, analyzed and preserved for production. Witnesses may be interviewed, especially in cases of insider infiltration. After companies discover a compromise, they have a legal duty to maintain data in its native format.

During an investigation, communication among team members is a must. For example, an IT expert may not realize that an individual file contains a company’s most secret information unless they are alerted to it.

Even if a hacked company tries to quantify the loss and identify the source themselves through their own IT department, they may rapidly discover they are in over their heads. Immediately hiring a forensic accountant and security expert saves precious time and money.

Alert insurance carriers and clients

Don’t wait until a cyber attack to start reviewing your coverage. Many companies find their existing business coverage isn’t adequate if they face a significant disruption.

If there is a breach, an immediate call to your company’s insurance carrier is a must.

A business’s clients also need to be notified immediately, and a company should be prepared to deal with the media. Consider hiring a public relations firm.

Take precautions

Some companies immediately engage a forensic accountant to conduct an analysis whenever a high-level executive leaves. The right team can assist with penetration testing to detect and guard against vulnerabilities. Knowing that these safeguards are in place is a deterrent, not only on the person who departs but also on those still with the company.

Following an attack, legal, digital and accounting experts can help minimize the damage, bring wrongdoers to justice and prevent a tragic WannaCry sequel.

Lisa A. Myers is a principal at Boyer & Ritter LLC and heads the firm’s forensic, litigation support and consulting group. She was 2016-2017 president of the Pennsylvania Institute of Certified Public Accountants (PICPA). She can be reached at (717) 761-7210 or

Bill Dean is a senior manager at LBMC Information Security and is responsible for incident response, digital forensics, electronic discovery and overall litigation support. He can be reached at (865) 862-3051 or

You May Have Missed...

Write to the Editorial Department at

Leave a Comment


Please note: All comments will be reviewed and may take up to 24 hours to appear on the site.

Post Comment
View Comment Policy


cotton October 2, 2017 3:44 am

promise to honor he all through my exstance,i am Oscar Michelle from
Chicago i want to use this medium to testify about a great PROPHET who
help me cast a spell when i have problem in my marriage he caster a
spell for me within 3 good days without any delay my husband was back
to me. I broke up with him just because of a little quarrel he packed
all his belongings and run away to no were without me knowing his were
about thinking we will come back in a short while but things were
growing worst and worst until i contacted this witch DR who was
introduce to me by my friend Rhoda,This prophet who helped me with his
mighty powers of his forefathers to bring him back to my door step
after a long period of time we both had this misunderstanding, i have
never believed in a spell casters until i came across this prophet.
Well it will be of great sin if i should go out from here without
testifying of his goodness this is contact of this great spell
caster,in case you need the help of this great prophet you can contact
him via email address at ( once you
contact him all your problems will be solved without any stress,once
more i say a very large gratitude to you sir for helping me to recover
my lover back,in case you have any problem regarding your
marriage,pregnancy,success in life,win your boyfriend heart,retrieving
your money back from internet hacker,work permit,find lost money,
promotion in your working place,e.t.c he is there for you just contact
him for help.please my PROPHET keep your good AND MIGHTY work on people need your help as i
have just did .once more contact him on his email or +447035969024 he is very good and
understanding,i wish YOU the best of lack.
my there friend am happy for the great work of papa ODUMA

Bennyxv September 26, 2017 1:08 am

I've just used this guy's services and he's a legit black hat hacker, mobile phone hack, social network hacks, emails and school grade hacks, he's actually the real deal, I was initially skeptical as I already got scammed before but he did come through, his email is

Sandra henley September 12, 2017 10:02 am

Require services of a certified and experienced ethical hacker for your general ethical and specialized Hacks?
+ Access various social networks (whatsapp, facebook, twitter,
Instagram, Google+, etc)
+ Specialized and experienced hacking into Educational
Institutions, Change of Grades, Clearing of Criminal Records,
Blog Hack, Clear Credit Card Debts, Drop Money Into Credit
Cards, Smartphone Hacks, Bank Account Hacks in various parts
of the world etc,
+ Hack into email accounts (gmail, yahoo, aol, etc) CONTACT_JOHNHACKER498@GMAIL.COM today for a very good and perfect job with affordable price

Kelly August 26, 2017 7:18 pm

Do you require the services of a hacker? for their ethical and unethical hacks,Theyre time conscious,very discreet and reliable,he’s the best i’ve worked with so far..check him out and you won't be disappointed..serious enquiries only!!

lissa August 23, 2017 7:08 am

From your post only I came to know about the release of the appropriately named “WannaCry” ransom ware assault that paralyzed computers across the globe. I think even the computer legends are failed in front of this hack.clipping path service

8 ballpool July 12, 2017 5:16 am

I love the way you share this information with everyone. I appreciate this. 8 Ball Pool Hack