You’ve just discovered there are compromised employee credentials or other sensitive data of your company exposed and available on the Dark Web. The reality is, once exposed on the Dark Web, your information cannot ever be completely removed or hidden. You cannot file a complaint or contact a support line to demand your data be removed from the Dark Web. Your company should immediately start taking appropriate steps and measures to correct or minimize the risks and potential damages associated with this exposed data. Identify, understand and learn from past mistakes or failures, and adopt a more proactive and preventative approach to your business’ cybersecurity strategies moving forward.Here are some steps to take when you learn of compromised credentials:
- Review individual compromises with users.
- Change passwords for exposed logins. This includes ALL accounts that are using the compromised password.
- Educate your staff on security best practices and how to avoid being a victim of phishing attempts.
- Establish strict password policies and use multi-factor authentication whenever possible.
CyberSecurity Best Practices to Proactively Protect Your Business
Download our checklist on steps to take when your credentials have been found on the Dark Web, and what to do to proactively protect your business.
