“There are only two types of companies: Those that have been hacked and those that will be hacked.” Robert S. Mueller, Director FBI made this famous quote but almost by the time he made the quote it was out of date – it should be ‘There are only two types of companies: Those that have been hacked and those that don’t know they have been hacked.’
Having a plan to prevent data breaches is really important but in my honest opinion having a plan to response after a data breach happened it is even more important. Do you have a plan? If yes make a data breach simulation and test if it works.
All organisations must now ask themselves the same question, regardless of whether they were affected by WannaCry or not: How can we protect ourselves from similar attacks in the future?