Hurricane Sandy tests business continuity, disaster recovery

In the aftermath of Hurricane Sandy, which disrupted power, internet, phone and numerous other technical services for millions along the east coast of the US, organisations are in an ideal mode to check the efficiency or shortcomings of their 'in-case-of-disaster' plans.

One factor companies should consider for their business continuity (BC) plans are additional measures to keep their web presence alive during a natural disaster.

On Monday, New York-based internet service provider Datagram lost power due to the storm, effectively knocking out several high-traffic websites hosted by its data centre, including The Huffington Post, Buzzfeed and Gawker.

Doug Madory, a senior research engineer at Renesys, which provides resources for organisations to manage internet-based critical processes, told SCMagazine.com that companies should always have a back-up option for their websites.

“We would advise a business to have redundancy in how they reach the internet,” Madory said. “They should have multiple physical paths to the internet, in case one internet service provider drops out.”

Organisations can also consider using a content delivery network (CDN) to ensure their website is hosted in numerous locations.

“[CDNs] have data centres all around the world, and they make sure that if any centre goes down, your users won't be affected,” Madory said.

In addition to preparing for the actual disaster, management should also train employees to fend off disruptive occurrences that could appear after the fact. Scammers looking to take advantage of crisis response efforts, for instance, are another likely threat.

The Federal Trade Commission posted a warning on Wednesday about scammers, who could email individuals at work or at home to encourage them to donate to disaster relief groups.

Identity Theft 911 published a blog post on Tuesday on additional scams to watch out for, including Hurricane Sandy related-photos or videos on social networking sites, which actually download malware when clicked. Users should also be wary of phishing attempts that guide victims to illegitimate sites, designed to look like charities.

“Double check the legitimacy of the site you're clicking to from your email, Facebook or elsewhere,” said the post. “When in doubt, check your local American Red Cross or the national [Federal Emergency Management Agency] FEMA site to find local help.”

Sign up to our newsletters