Kevin Duffey, profile picture
Uploaded byKevin Duffey
PPTX, PDF362 views

Cyber Attack Simulation for 450 Executives

The document details a cyber attack executive simulation involving 450 delegates at a finance conference, highlighting how untrained executives often disagree on crucial responses during a crisis. Key findings include significant hesitance to inform IT and executives of a breach, and the necessity for structured communication strategies post-incident. The simulation underscores the importance of regular training for executive teams to effectively manage cyber incidents and their repercussions.

Businessâ—¦
Related topics:
Data Breach Insights• Cyber Attack•

Embed presentation

Downloaded 25 times
Cyber Attack Executive Simulation 450 Delegates to the annual Finance Malta conference joined this simulation on 17th May 2018 Kevin.Duffey@CyberRescue.co.uk
This version of the slides shows delegate’s answers. Notice that –like untrained executives in a real crisis – people disagreed on what to do… . To follow Cyber Rescue: www.tinyurl.com/cyber999
Cyber Rescue helps CEOs reduce harm from cyber attacks To follow Cyber Rescue: www.tinyurl.com/cyber999
You’re now on the Board of Acme To follow Cyber Rescue: www.tinyurl.com/cyber999
Who do you inform? 1. Nobody – this doesn’t look real 2. Police – perhaps they can help 3. CEO – the boss needs to know 4. DPO – tell Data Privacy Officer 5. IT Team – were we breached? 6. Procurement – 3rd party breach 7. Other – eg Security, Insurance… To follow Cyber Rescue: www.tinyurl.com/cyber999
Who do you inform? Note: 30% of 450 untrained delegates would not tell their IT colleagues. Over 50% wouldn’t tell their DPO or CEO, & over 90% wouldn’t tell the police of blackmail. To follow Cyber Rescue: www.tinyurl.com/cyber999
A 2nd message “from Korea” Proof you don’t care Info on 187 Customers To follow Cyber Rescue: www.tinyurl.com/cyber999
When to tell affected customers? 1. Immediately 2. In 24 hours 3. In 48 hours 4. In 72 hours 5. In 7 days 6. In 28 days 7. Don’t inform To follow Cyber Rescue: www.tinyurl.com/cyber999
Note: 65% of 450 untrained delegates say they would inform customers within 24 hours. Rushed notifications often contain errors, that increase risk of harm by fraudsters. To follow Cyber Rescue: www.tinyurl.com/cyber999 When to tell affected customers?
Update from IT Department The Koreans are probably still in our systems. One of our staff may have helped them. We can stop them if we disconnect for 3 days. To follow Cyber Rescue: www.tinyurl.com/cyber999
What executive action to take? 1. Disconnect systems from internet 2. Forensics – what has happened? 3. Remediation – close the breach 4. Ask Insurer to confirm covered 5. Brief the Board and set Budget 6. Submit report to Regulators 7. Implement Cyber Crisis Plan To follow Cyber Rescue: www.tinyurl.com/cyber999
Note: 69% of 450 untrained delegates say they would implement their Cyber Crisis Plan. When did you last look at your Cyber Crisis Plan? Do you want one? To follow Cyber Rescue: www.tinyurl.com/cyber999 What executive action to take?
Where is your Cyber Crisis Plan? To follow Cyber Rescue: www.tinyurl.com/cyber999 (Cyber Rescue specializes in helping businesses to write & test their executive response plan)
But rumours are circulating… Acme don’t care about my safety! Now Russians will steal my money Because we care On Friday, Acme launch a great new service to show customers how we care To follow Cyber Rescue: www.tinyurl.com/cyber999
What communications needed? 1. Stop other comms, such as ad campaign 2. Create web site with Q&A about breach 3. Customer advice, eg how to prevent fraud 4. Provide script (eg for Twitter & Call Centre) 5. Pre-brief employees about situation 6. Identify advocates to speak for company 7. Customer Compensation to go with apology To follow Cyber Rescue: www.tinyurl.com/cyber999
Note: 81% of 450 untrained delegates would not prepare advice to customers on how to avoid fraud, and 87% would not consider compensation. Customer loyalty??? To follow Cyber Rescue: www.tinyurl.com/cyber999 What communications needed?
Finally, some good(ish) news “The Breach was at our marketing partner in France. Fortunately, our contract forces them to pay costs.” To follow Cyber Rescue: www.tinyurl.com/cyber999
Cyber Attack Executive Simulation The End… . This simulation “sample” lasted just 19 minutes. Take Action Now: We recommend every Executive Teams should invest at least 55 minutes each year, to rehearse their response to the cascade of commercial consequences that follow a catastrophic breach. Cyber Rescue are European leaders in providing these to Boards. To follow Cyber Rescue: www.tinyurl.com/cyber999
Cyber Attack Executive Simulation Contact us for: • An executive simulation for your senior team • A bespoke response plan to help you lead through a breach • A fully-automated score of your cyber security, Vs your peers Kevin.Duffey@CyberRescue.co.uk To follow Cyber Rescue: www.tinyurl.com/cyber999

More Related Content

PPTX
Ppt peradaban pulau kreta
byRahadian Nur Prathama
 
PDF
Cybersecurity crisis management a prep guide
byJoAnna Cheshire
 
PPT
CEOs leading Recovery from Cyber Attack
byKevin Duffey
 
PDF
Cyber attack response from the CEO perspective - Tallinn Estonia - Short Simu...
byKevin Duffey
 
PPTX
London First - cyber attack simulation - 22nd May 2018
byKevin Duffey
 
PDF
Cyber Security 101: What Your Agency Needs to Know
bySandra Fathi
 
PDF
Managing a Hack: Orchestrating Incident Response to Preserve Brand Reputation
bySandra Fathi
 
PDF
Cyber Crime: Preparing Your Organization for the New Normal
bySandra Fathi
 
Ppt peradaban pulau kreta
byRahadian Nur Prathama
 
Cybersecurity crisis management a prep guide
byJoAnna Cheshire
 
CEOs leading Recovery from Cyber Attack
byKevin Duffey
 
Cyber attack response from the CEO perspective - Tallinn Estonia - Short Simu...
byKevin Duffey
 
London First - cyber attack simulation - 22nd May 2018
byKevin Duffey
 
Cyber Security 101: What Your Agency Needs to Know
bySandra Fathi
 
Managing a Hack: Orchestrating Incident Response to Preserve Brand Reputation
bySandra Fathi
 
Cyber Crime: Preparing Your Organization for the New Normal
bySandra Fathi
 

Similar to Cyber Attack Simulation for 450 Executives

PDF
Cybersecurity Roadmap Development for Executives
byKrist Davood - Principal - CIO
 
PPTX
Cyber Crisis Management - Kloudlearn
byKloudLearn
 
PPTX
CyberCare Pro - Cybersecurity for SME's updated.pptx
bymargueritemcleod1
 
PPTX
Aftermath Review for BSI Ransomware.pptx
byMuhammad Salahuddien
 
PPTX
What Small Business Can Do To Protect Themselves Now in Cybersecurity
byReading Works Detroit
 
PDF
Cyber Crisis Management.pdf
byPriyanka Aash
 
PDF
How Cyber Threats Can Impact Your Business.pdf
byapurvar399
 
PPTX
Showreel ICSA Technology Conference
byInstitute of Chartered Secretaries and Administrators
 
PPTX
Module 8 - External Crisis – Changing Technology.pptx
bycaniceconsulting
 
PPT
The Security Director's Practical Guide to Cyber Security
byKevin Duffey
 
PPTX
nerfslides.pptx
byssusera5ade5
 
PPTX
Cyber Recovery - Legal Toolkit
byKevin Duffey
 
PPTX
ACEDS-ACFCS Cybersecurity Webcast
byLogikcull.com
 
PPTX
Cybersecurity for IAEM Region 4
bySarah K Miller
 
PPTX
2022 Rea & Associates' Cybersecurity Conference
byRea
 
PPTX
Cyber Risk: Exposures, prevention, and solutions
byCapri Insurance
 
PPTX
Cybersecurity…real world solutions
byErnestStaats
 
PPTX
What to do when get hacked or suffer a cyber breach
byEast Midlands Cyber Security Forum
 
PDF
Managing a Hack: A Communicator's Guide to a Data Breach
bySandra Fathi
 
PDF
The BIG ONE 2.0 - HouSecCon
byMichael Gough
 
Cybersecurity Roadmap Development for Executives
byKrist Davood - Principal - CIO
 
Cyber Crisis Management - Kloudlearn
byKloudLearn
 
CyberCare Pro - Cybersecurity for SME's updated.pptx
bymargueritemcleod1
 
Aftermath Review for BSI Ransomware.pptx
byMuhammad Salahuddien
 
What Small Business Can Do To Protect Themselves Now in Cybersecurity
byReading Works Detroit
 
Cyber Crisis Management.pdf
byPriyanka Aash
 
How Cyber Threats Can Impact Your Business.pdf
byapurvar399
 
Showreel ICSA Technology Conference
byInstitute of Chartered Secretaries and Administrators
 
Module 8 - External Crisis – Changing Technology.pptx
bycaniceconsulting
 
The Security Director's Practical Guide to Cyber Security
byKevin Duffey
 
nerfslides.pptx
byssusera5ade5
 
Cyber Recovery - Legal Toolkit
byKevin Duffey
 
ACEDS-ACFCS Cybersecurity Webcast
byLogikcull.com
 
Cybersecurity for IAEM Region 4
bySarah K Miller
 
2022 Rea & Associates' Cybersecurity Conference
byRea
 
Cyber Risk: Exposures, prevention, and solutions
byCapri Insurance
 
Cybersecurity…real world solutions
byErnestStaats
 
What to do when get hacked or suffer a cyber breach
byEast Midlands Cyber Security Forum
 
Managing a Hack: A Communicator's Guide to a Data Breach
bySandra Fathi
 
The BIG ONE 2.0 - HouSecCon
byMichael Gough
 

More from Kevin Duffey

PPTX
Equifax Breach - Lessons - Cyber Rescue - 16th may 2018
byKevin Duffey
 
PDF
Cyber TPRM - the journey ahead
byKevin Duffey
 
PPTX
Cyber Risk Measurement: what 25 CISOs & CROs plan for 2020
byKevin Duffey
 
PDF
Cyber Insights from 100 surveys
byKevin Duffey
 
PPTX
Keynote at Operational Resilience summit - Financial Services - 18th Nov 2019
byKevin Duffey
 
PPTX
Cyber Resilience: managing 3rd Party Risks in Financial Services
byKevin Duffey
 
PPTX
Privacy & Security in Feb 2020: new Fintech regulations on Cyber Security at ...
byKevin Duffey
 
PPTX
Cyber Resilience across Subsidiaries and Suppliers
byKevin Duffey
 
PPTX
Cyber Insurance - Best Insights of June 2022.pptx
byKevin Duffey
 
PPTX
Equifax breach - how to lose friends and customers...
byKevin Duffey
 
PPTX
Vodafone security priorities in Greece
byKevin Duffey
 
PPTX
Ensuring Cyber Resilience in the Finance Sector
byKevin Duffey
 
PDF
Breaches Anticipated - because firms have weak cyber security visible to hac...
byKevin Duffey
 
PPTX
Cyber Police in Greece helping CEOs
byKevin Duffey
 
PDF
Breaches anticipated in 2021 - Published 14th Jjune 2021
byKevin Duffey
 
PDF
Breaches Anticipated in 2022 as Cyber Security Posture so Low
byKevin Duffey
 
PDF
Breaches Anticipated in 2022 - November 1st, 2022
byKevin Duffey
 
PDF
Cyber insurance insights - 17th feb 2022
byKevin Duffey
 
PDF
Best Cyber Insights of 2022, from over 200 surveys
byKevin Duffey
 
PDF
Best Cyber Risk Insights from 100 reports published in year to March 2022
byKevin Duffey
 
Equifax Breach - Lessons - Cyber Rescue - 16th may 2018
byKevin Duffey
 
Cyber TPRM - the journey ahead
byKevin Duffey
 
Cyber Risk Measurement: what 25 CISOs & CROs plan for 2020
byKevin Duffey
 
Cyber Insights from 100 surveys
byKevin Duffey
 
Keynote at Operational Resilience summit - Financial Services - 18th Nov 2019
byKevin Duffey
 
Cyber Resilience: managing 3rd Party Risks in Financial Services
byKevin Duffey
 
Privacy & Security in Feb 2020: new Fintech regulations on Cyber Security at ...
byKevin Duffey
 
Cyber Resilience across Subsidiaries and Suppliers
byKevin Duffey
 
Cyber Insurance - Best Insights of June 2022.pptx
byKevin Duffey
 
Equifax breach - how to lose friends and customers...
byKevin Duffey
 
Vodafone security priorities in Greece
byKevin Duffey
 
Ensuring Cyber Resilience in the Finance Sector
byKevin Duffey
 
Breaches Anticipated - because firms have weak cyber security visible to hac...
byKevin Duffey
 
Cyber Police in Greece helping CEOs
byKevin Duffey
 
Breaches anticipated in 2021 - Published 14th Jjune 2021
byKevin Duffey
 
Breaches Anticipated in 2022 as Cyber Security Posture so Low
byKevin Duffey
 
Breaches Anticipated in 2022 - November 1st, 2022
byKevin Duffey
 
Cyber insurance insights - 17th feb 2022
byKevin Duffey
 
Best Cyber Insights of 2022, from over 200 surveys
byKevin Duffey
 
Best Cyber Risk Insights from 100 reports published in year to March 2022
byKevin Duffey
 

Recently uploaded

PPTX
Agentic AI vs Genetic AI: Key Differences, Use Cases & Future Trends | Comple...
byMithun Prakash
 
PPTX
Explore Hubspot’s Customer Agent for B2B
byBoundify
 
PDF
Trusted Place to Buying Verified PayPal Accounts in Los Angeles.pdf
byBuyVerifiedCashAppAc898153
 
PDF
How to Buy Twitter Accounts_ A Step-by-Step Guide (2).pdf
byp7u0tz3g7favwxkjrlwm
 
PDF
Vision.pdf TPR document on trusteeship and governance
byHenry Tapper
 
PDF
Camil Institutional Presentation_Dez25.pdf
byCAMILRI
 
PDF
_Top 7 Mistakes to Avoid When Buying Google Ads Accounts.pdf
byhttps://pvaallit.com/product/buy-verified-apple-pay-accounts/
 
PDF
The threat to financial insitutions of quantum computing breaking all encrypt...
byChris Skinner
 
PDF
Benefits Quarterly, Vol. 37, Fourth Quarter 2021.pdf
byHenry Tapper
 
PDF
A Comprehensive Guide to Buy Verified PayPal Accounts in the US.pdf
byPremium Phone Verified Account Providers
 
DOCX
Best Top 7 sites to Buy Old Gmail Accounts (PVA & Aged).docx
byhttps://pvaallit.com/product/buy-google-5-star-reviews/
 
PDF
enterprise software is not dead and here is why
bywangbin26
 
PDF
Camil Institutional Presentation_Jan26.pdf
byCAMILRI
 
PDF
RFI Responses for Govt Contracting Tips.
byiQuasar LLC
 
DOCX
Buy Old Gmail Accounts – A Detailed Guide.docx
byPremium Phone Verified Account Providers
 
DOCX
Buy Old Gmail Accounts USA – Instant Delivery Bulk Gmail.docx
byDigital Marketind and Business By PVAisBack.Com
 
PDF
Nicky Oppenheimer World Economic Forum Jan 2000
byJames AH Campbell
 
PDF
Equinox Gold - Corporate Presentation - Jan 2026
byEquinox Gold Corp.
 
DOCX
Podcast Promotion Schedule for Turntable News
byslpalakovich
 
PPTX
REVIEWER-3rd-quarter-exam-mathematics.pptx
bydominicdaltoncaling2
 
Agentic AI vs Genetic AI: Key Differences, Use Cases & Future Trends | Comple...
byMithun Prakash
 
Explore Hubspot’s Customer Agent for B2B
byBoundify
 
Trusted Place to Buying Verified PayPal Accounts in Los Angeles.pdf
byBuyVerifiedCashAppAc898153
 
How to Buy Twitter Accounts_ A Step-by-Step Guide (2).pdf
byp7u0tz3g7favwxkjrlwm
 
Vision.pdf TPR document on trusteeship and governance
byHenry Tapper
 
Camil Institutional Presentation_Dez25.pdf
byCAMILRI
 
_Top 7 Mistakes to Avoid When Buying Google Ads Accounts.pdf
byhttps://pvaallit.com/product/buy-verified-apple-pay-accounts/
 
The threat to financial insitutions of quantum computing breaking all encrypt...
byChris Skinner
 
Benefits Quarterly, Vol. 37, Fourth Quarter 2021.pdf
byHenry Tapper
 
A Comprehensive Guide to Buy Verified PayPal Accounts in the US.pdf
byPremium Phone Verified Account Providers
 
Best Top 7 sites to Buy Old Gmail Accounts (PVA & Aged).docx
byhttps://pvaallit.com/product/buy-google-5-star-reviews/
 
enterprise software is not dead and here is why
bywangbin26
 
Camil Institutional Presentation_Jan26.pdf
byCAMILRI
 
RFI Responses for Govt Contracting Tips.
byiQuasar LLC
 
Buy Old Gmail Accounts – A Detailed Guide.docx
byPremium Phone Verified Account Providers
 
Buy Old Gmail Accounts USA – Instant Delivery Bulk Gmail.docx
byDigital Marketind and Business By PVAisBack.Com
 
Nicky Oppenheimer World Economic Forum Jan 2000
byJames AH Campbell
 
Equinox Gold - Corporate Presentation - Jan 2026
byEquinox Gold Corp.
 
Podcast Promotion Schedule for Turntable News
byslpalakovich
 
REVIEWER-3rd-quarter-exam-mathematics.pptx
bydominicdaltoncaling2
 

Cyber Attack Simulation for 450 Executives

  • 1.
    Cyber Attack Executive Simulation 450Delegates to the annual Finance Malta conference joined this simulation on 17th May 2018 Kevin.Duffey@CyberRescue.co.uk
  • 2.
    This version ofthe slides shows delegate’s answers. Notice that –like untrained executives in a real crisis – people disagreed on what to do… . To follow Cyber Rescue: www.tinyurl.com/cyber999
  • 3.
    Cyber Rescue helpsCEOs reduce harm from cyber attacks To follow Cyber Rescue: www.tinyurl.com/cyber999
  • 4.
    You’re now onthe Board of Acme To follow Cyber Rescue: www.tinyurl.com/cyber999
  • 6.
    Who do youinform? 1. Nobody – this doesn’t look real 2. Police – perhaps they can help 3. CEO – the boss needs to know 4. DPO – tell Data Privacy Officer 5. IT Team – were we breached? 6. Procurement – 3rd party breach 7. Other – eg Security, Insurance… To follow Cyber Rescue: www.tinyurl.com/cyber999
  • 7.
    Who do youinform? Note: 30% of 450 untrained delegates would not tell their IT colleagues. Over 50% wouldn’t tell their DPO or CEO, & over 90% wouldn’t tell the police of blackmail. To follow Cyber Rescue: www.tinyurl.com/cyber999
  • 8.
    A 2nd message“from Korea” Proof you don’t care Info on 187 Customers To follow Cyber Rescue: www.tinyurl.com/cyber999
  • 9.
    When to tellaffected customers? 1. Immediately 2. In 24 hours 3. In 48 hours 4. In 72 hours 5. In 7 days 6. In 28 days 7. Don’t inform To follow Cyber Rescue: www.tinyurl.com/cyber999
  • 10.
    Note: 65% of450 untrained delegates say they would inform customers within 24 hours. Rushed notifications often contain errors, that increase risk of harm by fraudsters. To follow Cyber Rescue: www.tinyurl.com/cyber999 When to tell affected customers?
  • 11.
    Update from ITDepartment The Koreans are probably still in our systems. One of our staff may have helped them. We can stop them if we disconnect for 3 days. To follow Cyber Rescue: www.tinyurl.com/cyber999
  • 12.
    What executive actionto take? 1. Disconnect systems from internet 2. Forensics – what has happened? 3. Remediation – close the breach 4. Ask Insurer to confirm covered 5. Brief the Board and set Budget 6. Submit report to Regulators 7. Implement Cyber Crisis Plan To follow Cyber Rescue: www.tinyurl.com/cyber999
  • 13.
    Note: 69% of450 untrained delegates say they would implement their Cyber Crisis Plan. When did you last look at your Cyber Crisis Plan? Do you want one? To follow Cyber Rescue: www.tinyurl.com/cyber999 What executive action to take?
  • 14.
    Where is yourCyber Crisis Plan? To follow Cyber Rescue: www.tinyurl.com/cyber999 (Cyber Rescue specializes in helping businesses to write & test their executive response plan)
  • 15.
    But rumours arecirculating… Acme don’t care about my safety! Now Russians will steal my money Because we care On Friday, Acme launch a great new service to show customers how we care To follow Cyber Rescue: www.tinyurl.com/cyber999
  • 16.
    What communications needed? 1.Stop other comms, such as ad campaign 2. Create web site with Q&A about breach 3. Customer advice, eg how to prevent fraud 4. Provide script (eg for Twitter & Call Centre) 5. Pre-brief employees about situation 6. Identify advocates to speak for company 7. Customer Compensation to go with apology To follow Cyber Rescue: www.tinyurl.com/cyber999
  • 17.
    Note: 81% of450 untrained delegates would not prepare advice to customers on how to avoid fraud, and 87% would not consider compensation. Customer loyalty??? To follow Cyber Rescue: www.tinyurl.com/cyber999 What communications needed?
  • 18.
    Finally, some good(ish)news “The Breach was at our marketing partner in France. Fortunately, our contract forces them to pay costs.” To follow Cyber Rescue: www.tinyurl.com/cyber999
  • 19.
    Cyber Attack Executive Simulation TheEnd… . This simulation “sample” lasted just 19 minutes. Take Action Now: We recommend every Executive Teams should invest at least 55 minutes each year, to rehearse their response to the cascade of commercial consequences that follow a catastrophic breach. Cyber Rescue are European leaders in providing these to Boards. To follow Cyber Rescue: www.tinyurl.com/cyber999
  • 20.
    Cyber Attack Executive Simulation Contactus for: • An executive simulation for your senior team • A bespoke response plan to help you lead through a breach • A fully-automated score of your cyber security, Vs your peers Kevin.Duffey@CyberRescue.co.uk To follow Cyber Rescue: www.tinyurl.com/cyber999

Editor's Notes

  • #6 https://placeit.net/stages/ipad-landscape-blender?customG_0=dee6d
  • #7 Did anyone pay the ransom?
  • #8 Did anyone pay the ransom?
  • #11 Did anyone pay the ransom?
  • #13 Has anyone paid the ransom yet?
  • #14 Did anyone pay the ransom?
  • #15 Has anyone paid the ransom yet?
  • #16 Has anyone paid the ransom yet?
  • #17 Has anyone paid the ransom yet?
  • #18 Did anyone pay the ransom?
  • #19 Has anyone paid the ransom yet?