How to Respond to a Cyber Attack: Simple Steps for Small Businesses

Why Having a Cyber Incident Plan Matters

Even with strong security in place, things can still go wrong.

A scam might slip through.
A laptop could be stolen.
A ransomware attack could lock up your files.

When something happens, how you respond in the first few hours makes all the difference.

Having a simple, clear cyber incident response plan helps you:

• Act fast and stay calm

• Limit the damage

• Guide your team on what to do next

The Australian Cyber Security Centre (ACSC) strongly recommends that all businesses, no matter their size, have a response plan ready​.
It doesn’t need to be complicated—but it does need to exist before something goes wrong.

How to Build a Basic Cyber Incident Response Plan

Create a Simple, Written Plan

✅ Keep it short, simple, and practical.
At a minimum, include:

• What to do if a device is lost, stolen, or hacked

• Who to call (IT support, internal lead, insurance provider, etc.)

• Where backups are located and how to restore them

• How to isolate an affected device (e.g., disconnect from Wi-Fi)

📝 Print a copy and share it with your leadership team.
Digital copies are great—but you might need the plan when your systems are down.

Bookmark the Official Reporting Portal

✅ cyber.gov.au/report
This is the Australian Government’s portal to report:

• Cybercrime

• Scams

• Cyber security incidents

Having this bookmarked ensures you don't waste time searching when urgency matters.

Run a Cyber Drill Once a Year

✅ Practice makes protection.

• Walk through a realistic scenario with your team.

• Example: Pretend someone clicked on a phishing email or got locked out of their account.

• Check that everyone knows:

• What to do

• Who to call

• Where to find your backup plan

Even a 15-minute tabletop exercise once a year can dramatically improve your team’s response if a real incident occurs.

Why You Can't Afford to "Figure It Out Later"

The worst time to figure out how to respond to a cyber incident is during a cyber incident.

When panic hits:

• Mistakes are made

• Evidence can be lost

• Financial and reputational damage can escalate fast

A basic plan helps you turn chaos into control—and recover faster.

You don’t need a 50-page technical document.
You just need something clear, calm, and ready.

Final Thoughts: Your People Are the Key

Cyber security isn’t just about firewalls and anti-virus software.
It’s about people.

You can have the best tools in the world, but if someone on your team clicks the wrong link, everything can unravel.

Your people are either:

• Your biggest cyber risk

• Or your greatest cyber asset

That’s why training matters.
Not once. Not only after a crisis.
But regularly, in small, practical doses.

📬 Stay Ahead with CyberBites

We’re building bite-sized, no-jargon cyber training for small business teams:

✅ Short, engaging lessons
✅ Built for real people—not IT pros
✅ Focused on actions that matter

🧠 Want early access to our cyber training?
👉 Click here to join the waitlist

Your future self—and your business—will thank you.

📚 Related Resources

• Train Your Team to Spot Scams Before It's Too Late

• How to Create Strong Passwords and Keep Your Business Safe

• Limit Admin Access and Strengthen Your Cyber Security