Most firms have strategies to prevent their systems being attacked, but they should also develop policies on what to do in the event of a security breach to preserve evidence and prosecute the culprits, according to. . .
Most firms have strategies to prevent their systems being attacked, but they should also develop policies on what to do in the event of a security breach to preserve evidence and prosecute the culprits, according to experts.

The need for successful prosecutions to deter attacks is growing, say many security experts. The increasing threat is shown by the fact that for the first nine months of this year, almost 75,000 security breaches were reported to the security service Cert. This compares with about 52,000 for the whole of 2001 and fewer than 22,000 during 2000.

Laws are widely believed to lag behind advances in technology, but some firms do not report crimes because they lack usable evidence, thus making the job of the police all the more difficult. This is where good policies and digital forensics can help.

The link for this article located at vnunet is no longer available.