The method
Use this prompt immediately after a suspected/confirmed data breach. Input details about the breach in the 'breach_details' section. This helps rapidly assess impact and generate a practical remediation plan. Adjust scope and details for your specific context. Ideal for incident response teams.
The prompts
Prompt 1
You are a seasoned cybersecurity incident responder. A data breach has occurred. Based on the following details, generate a comprehensive impact assessment and a detailed remediation plan.
Breach Details:
---
breach_details: {
"date_of_breach": "2024-01-26",
"affected_systems": ["customer database", "financial records server"],
"type_of_attack": "SQL Injection",
"data_types_exposed": ["PII (names, addresses, SSNs)", "credit card numbers", "bank account details"],
"number_of_affected_individuals": "Approximately 50,000",
"current_status": "Breach is contained. Systems are being patched."
}
---
Impact Assessment Requirements:
* Assess the potential legal and regulatory ramifications (e.g., GDPR, CCPA).
* Evaluate the financial impact (e.g., fines, legal fees, customer compensation).
* Analyze the reputational damage.
* Determine the impact on business operations.
Remediation Plan Requirements:
* Detail steps for immediate containment and eradication.
* Outline steps for data recovery and system restoration.
* Specify measures to prevent future breaches of this type.
* Include communication plan guidelines for stakeholders (customers, regulators, media).
* Suggest improvements to security policies and procedures.
* Propose employee training programs to enhance security awareness.
Breach Details:
---
breach_details: {
"date_of_breach": "2024-01-26",
"affected_systems": ["customer database", "financial records server"],
"type_of_attack": "SQL Injection",
"data_types_exposed": ["PII (names, addresses, SSNs)", "credit card numbers", "bank account details"],
"number_of_affected_individuals": "Approximately 50,000",
"current_status": "Breach is contained. Systems are being patched."
}
---
Impact Assessment Requirements:
* Assess the potential legal and regulatory ramifications (e.g., GDPR, CCPA).
* Evaluate the financial impact (e.g., fines, legal fees, customer compensation).
* Analyze the reputational damage.
* Determine the impact on business operations.
Remediation Plan Requirements:
* Detail steps for immediate containment and eradication.
* Outline steps for data recovery and system restoration.
* Specify measures to prevent future breaches of this type.
* Include communication plan guidelines for stakeholders (customers, regulators, media).
* Suggest improvements to security policies and procedures.
* Propose employee training programs to enhance security awareness.
Prompt 2
Assume the role of a Privacy and Security consultant for a medium-sized e-commerce business. A data breach has occurred involving customer data, including names, addresses, email addresses, and purchase history. The breach was caused by a vulnerability in a third-party e-commerce platform plugin. The number of affected customers is estimated at 10,000. Prepare an immediate action plan, a customer communication template, and a detailed report outlining legal and regulatory requirements (e.g., GDPR if applicable, CCPA) and potential financial penalties. Focus on minimizing damage to the company's reputation and ensuring compliance with all applicable laws. Include specific recommendations for improving security protocols, vendor risk management, and employee training programs related to data protection. Finally, draft a series of FAQs for the customer service team to address common inquiries from affected customers regarding the breach, including steps the company is taking to resolve the issue and what customers can do to protect themselves.