Poor incident response? Bad PR, Monday edition

新僵尸网络来了!全球超百万组织已被恶意感染 美国澳大利亚最严重
If you cant prevent a breach, cant you at least fake genuine concern?  You know, the At <blahblahblah>, we take your privacy and security very seriously bit?
Mark Flamme reports on a Key Bank breach where the banks response to notification of a problem is at least as problematic as the breach itself.
After a customer found himself with access to another customers complete history and details, he attempted to alert the bank.
“They told me, ‘Don’t worry. Just don’t worry.’ That’s all I can get out of them,” Brito said. “I sat on hold for 45 minutes for, supposedly, a supervisor who said, ‘Don’t worry. We’re taking care of it.’ I can look at a Connecticut man’s bank statements for the past 10 years. How is that a ‘don’t worry’ situation?”
The Sun Journal didn’t have any better luck. A call to a 24-hour hotline was answered by a representative who passed on a number for the Key Bank Corporate Headquarters Customer Complaint Resolution Department. Calls to that number, and to a third number for bank executive relations, were not answered.
A message left at the Complaint Resolution Department was not returned.
Read more on Sun Journal.
Now maybe the employee intended to be reassuring with the Dont worry, response, but that was unsatisfactory to the now-worried customers. Think about what you could say in that situation that might reassure a customer.
Thanks to the reader who sent in this item.
移动计算设备的盛行让公司系统和数据的接入无处不在,传统的边界安全已经模糊;员工自己的移动设备使公司信息的访问、处理和存储也可以随时随地完成。

互联网的协作功能,允许其它网站或程序访问您的账号,所以我们有必要提高警惕。不要被猎奇的心引导着随便点击允许按钮,进而上当受骗;

猜您喜欢

新型IoT僵尸网络正快速扩张
安全教育培训类视频创作服务
网络安全法在线讲解-《网络安全法》的突出亮点 https://v.qq.com/x/page/u0514qmyllg.html
横渡海峡如履平地 中国某船厂同时造5艘先进气垫船
KOVRIK-GRAND WSWS
互联网金融“宝宝们”的信息安全敌手并非黑客