Ben Worthen and Anton Troianovski report:
… How Epsilon handled to the breach is representative of how companies are shifting their responses to hacking incidents.
In the past, companies were typically caught off guard when a breach occurred and responses were often flat-footed, requiring updates and further clarifications to concerned customers.
Now an industry of experts—including lawyers, public-relations specialists and forensic investigators—has emerged to help companies determine what to disclose and how to reassure victims. Executives outside the computer room are also more aware of the threat posed by hacking, leading companies to formulate breach-response plans before an incident ever occurs.
The shift comes as hacking intrusions become more commonplace and experience shows that revealing an incident won’t necessarily cause lasting damage to a brand.
In fact, if a breach is handled well, “customer loyalty and your brand can actually improve,” said Lori Nugent, an attorney who specializes in breaches at Wilson Elser Moskowitz Edelman & Dicker LLP.
Read more on WSJ.
I’m prepared to accept that in the vast majority of breaches, there is no lasting damage or harm to brand, but I’d like to see data showing that loyalty or brand can improve following a breach if it’s handled well, so I’ve emailed Ms Nugent to ask her for additional information about her claim. If I hear anything, I’ll update this post.