Every day, attackers hack into the IT systems of government agencies, public institutions and businesses. They cripple operations, steal data, install malware or demand ransoms. In our increasingly digitalised world, this is where we are most vulnerable.

What should you do when everything comes to a standstill?

Drawing on our day-to-day experience, we have summarised the 10 most important tips for containing digital crises in an emergency. Communication here supports the IT department’s emergency measures.

Communicating in an emergency/crisis:

1. Contact your local data protection authority immediately by telephone and report the incident (file a report!).
2. You should also contact the relevant Central Contact Point for Cybercrime (ZAC) of the police for commercial enterprises and the Federal Office for Information Security. Here you will receive rapid assistance in the form of checklists and telephone support from members of the cyber security network and a team of specialists who can be deployed on site.
3. Consult the guidelines issued by the three authorities and assess whether the recommended actions contained therein are feasible or applicable to your organisation.
4. Appoint an internal project team that will meet regularly from now on and allocate the necessary tasks. Appoint a project manager for your team and give the project a name. Important: avoid the term ‘crisis team’ (stay calm!)
5. Exchange mobile phone numbers and agree on a suitable communication channel (WhatsApp group, Teams group, external email programmes, etc.). In particular, check whether your channel is working properly or is secure in light of your interests.
6. Assess the situation: What exactly has happened? Get an overview of what you know – and what you do not (yet) know. Try as far as possible to constantly update and validate your knowledge.
7. Establish control over information: Draw up a set of guidelines with key messages based on your verified findings. This will serve as the basis for internal communication, press releases, customer communications and as a talking point for potential TV/media enquiries.
8. Note: “Internal BEFORE external”! First communicate the situation to your staff. As a general rule: only pass on verified information and instructions. 
9. Information cascade: After your employees, you should inform customers and business partners. Then other stakeholders such as service providers, banks, authorities, the media, etc.
10. Channels and tone should remain the same as in “normal mode”.
    Dealing with the media: Respond positively to media enquiries. Here, too, there is a need for information and clarification. Handle this confidently and appropriately.

This crisiscommunication first-aid kit helps you to get your bearings, organise yourself and set initial priorities in an emergency. Our advice on how to proceed: Consulting experts facilitates an objective assessment!

Further information is available directly by email and via the mobile numbers of our crisis on-call service.