|
|
|
Description:
An organization should have a clear understanding of what actions should be taken in the event of an incident occurring. For those that don’t have a plan often the knee-jerk response is to pull the plug or disconnect the system from the network. This prevents further incursions and theft of data so it is an understandable reaction to have. In taking this action however, useful evidence such as volatile, in-memory data may be lost. Or even worse – consider the case where a logic bomb has been planted.
Read the Complete Paper You don't have permission to post replies. Please login or register. |
