Hacked? Unplug Networks, Not Power

An article from F-Secure cautions cyber attack victims from following the natural urge to turn machines off and then on. Killing the power wipes out any data stored on the RAM, which in invaluable to investigators. “Turning off the computer is like destroying evidence – evidence that can help uncover who the attackers are and what they’ve done,” says Janne Kauhanen, a member of F-Secure’s Cyber Security Services team. Instead, F-Secure recommends disconnecting all networks, including Ethernet, Wi-Fi, Bluetooth, NFC, and Mobile Data Network connections. Next, stop touching the computer, grab a pen and a piece of paper, and write down what happened. Include all the details you can, especially if you remember what you clicked on last, what tipped you off that there was a problem, and other oddities you noticed. Then reach out to assets that are normally notified for incident response. Read the article at F-Secure.