Ride the Lightning
Cybersecurity and Future of Law Practice Blog
by Sharon D. Nelson Esq., President of Sensei Enterprises, Inc.
IT Pros Told to Keep Data Breaches Quiet
May 24, 2023
TechRadar reported on May 18 that a new report from Atlas VPN has found that 42 percent of IT leaders (worldwide) were instructed not to reveal cybersecurity incidents. Of course, as we all know, concealing a data breach from the regulators (and the public) might result in major fines, legal ramifications, and a public relations problem.
More than half of the surveyed businesses said they had experienced at least one data breach in the last 12 months.
This is certainly worrisome given that cybercriminals who steal personally identifiable data may use it for impersonation and other types of fraud or sell it to third parties on the dark web. Customers not knowing they’re being impersonated online makes the problem worse. As you might imagine, sharing the type of malware used in the attack might help other businesses stay protected.
Despite that, almost a third (30%) of IT pros kept data breaches a secret, even though they knew they should be reporting them.
Among all the countries surveyed for the report, US businesses were the most likely to conceal cyber incidents with 70% being told to keep the incidents to themselves. More than half (55%) kept data thefts a secret, even though they knew it was the wrong thing to do.
“In an age where data breaches have become a grim reality, such practice undermines the fundamental principles of transparency, accountability, and proactive risk mitigation. Organizations must recognize that concealing data breaches erodes customers’ trust and hinders the collective effort required to combat cyber threats,” commented cybersecurity writer at Atlas VPN, Vilius Kardelis.
In the end, data breaches tend to be revealed – law firms and other entities have paid a hefty price (literally and in damaging publicity) for concealing them.
Sharon D. Nelson, Esq., President, Sensei Enterprises, Inc.
3975 University Drive, Suite 225, Fairfax, VA 22030
Email: Phone: 703-359-0700
Digital Forensics/Cybersecurity/Information Technology