Crisis management

Cybersecurity: 5 reflexes to anticipate and manage attacks

IS inventory, insurance, expert recruitment, tools, anticipation and preparation for security incidents... The right reflexes for SMBs to face up to cyber threats.
4 min

Cyber risks: SMBs are also concerned!

In France, the number of successful cyberattacks is estimated at 385,000 in 2022, private and public structures combined, representing a total cost of 2 billion euros, according to Asteres. All sizes of organization can be affected, not just large corporations.

Unfortunately, while large organizations are potentially better able to recover from an attack, the Institut Montaigne reports that 50% of SMBs go bankrupt within 18 months of a cyber attack.
And yet, 93% of SMBs say they don’t spend any money on cybersecurity, while 39% of SMEs and 14% of VSEs surveyed were victims of an attack in 2023 (Apave study).

Cybersecurity must therefore be at the heart of the concerns of organizations of all sizes, and be the focus of the utmost attention for all strata of an organization: from decision-makers to operational teams.

While individual vigilance is essential – in fact, a Verizon study reveals that over 80% of breaches are linked to a human factor – the tools(EDR, XDR, EPP, SOC, etc.) are also being perfected to thwart these evolving and increasingly industrialized threats.

Nevertheless, despite the most effective protection and warning systems, it’s impossible to avoid every fire. So, to help you adopt the right reflexes, here are 5 essential tips in the event of a cyber crisis.

Take stock of your IS and identify critical data

One of ANSSI’s recommendations is to have an in-depth knowledge of your entire IT environment, including computers, peripherals, tools,user types and access permissions. The aim is to understand all points of contact with the information system, as well as with the Internet network, in order to reinforce them in terms of security, and to be able to carry out effective investigations in the event of an incident.

What’s more, it’s crucial to protect data properly. To do this, you need to identify precisely which data is essential to the company’s operations, which data has legal constraints, where it is stored, and who has access to it.

Cyber risks: think about taking out insurance

ANSSI also advises small and medium-sized enterprises (SMEs) to ensure that at least the most significant risks to business continuity are taken into account. These risks include identity theft, financial loss, violation of personal data, interruption of computer systems…
To deal with them, you can opt for standard insurance or insurance specifically dedicated to cybersecurity.

Recruit a CISO

Ensuring the security of an information system requires the responsible involvement of teams, as well as the implementation of a detailed cybersecurity strategy at all levels of the company.
The Information Systems Security Manager (ISSM) plays a central role here. He is the guarantor of the company’s cyber roadmap, and his expertise places him in a privileged position to draw up this strategy and identify needs in terms of procedures and tools.

Assess your level of vulnerability to cyber attacks

Any entity is susceptible to attack, whether for ransom, to steal data for use or sale, or even to damage a company’s value and reputation.
Assessing this degree of vulnerability, as well as the elements of risk such as employee security awareness, external suppliers, remote working… is a crucial step in fully understanding the cyber stakes.

Crisis and post-crisis training

Simulating crisis scenarios, such asservice interruption, data loss or system restoration from backup, is a practical way of practicing protocols in the event of an attack.
This preparation ensures optimal response in the event of a real security incident, and can help highlight aspects that might require the involvement of specialized third parties (forensics, reverse analysis…).
Given that a crisis situation somSMBmes does not come alone, it is also essential for any organization to anticipate possible consequences, such as legal action in the event of loss or disclosure of personal data.

Cyber crisis: better safe than sorry

When it comes to security, it’s not a question of if a company is going to be attacked, but when. While this is not a pleasant prospect, it is a reality, and burying one’s head in the sand is clearly not an option.

Thanks to appropriate solutions and technologies, and well-established procedures, you have every chance of managing the crisis and recovering from it in the best possible conditions!

Cybersecurity - Reflexes to anticipate crises

And since communication is key,
here’s what you need to do to optimize the flow of information in the event of a crisis:

All about Crisis Unit