If your company suffers a data breach, would you hide it? What to do? Do you report it, and to whom?
Let me know in the comments – what do you think is the right thing to do?
Today’s lesson is to NOT hide the data breach! Department of Justice (DOJ) charged Uber’s former Chief Security Officer with “…obstruction of justice and misprision of a felony in connection with the attempted cover-up of the 2016 hack of Uber….” “The criminal complaint alleges that [Chief Security Officer] took deliberate steps to conceal, deflect, and mislead the Federal Trade Commission about the breach.” “Concealing information about a felony from law enforcement is a crime….”
Best business practice is to report the data breach to the authorities to avoid criminal charges.
Friendly reminder: Substantiation + transparency = TRUST!
For more information:
https://www.justice.gov/usao-ndca/pr/former-chief-security-officer-uber-charged-obstruction-justice