Re: Re: hacked server, DDoS bin installed

[angus_rg () yahoo com]

10k isn't as hard to come by as you might think.

Let's say your security professional makes 100k/year(may be a lot, but it's a nice round number to work with).  If, in 
their time, they spend 10 days/80 hours investigating, presenting data, working on an incident reports, etc, and you 
compute their pay, as about 380/day out of 260 workable days including vacation time), you're already 1/3 of the way 
there without considering their benefits compensation, loss due to things they've neglected etc.  Throw in the time and 
effort by your Marketing team and Public Relations to try and bring up the confidence of the public, not to mention 
you're legal teams time, you are probably pennies away from being at the 10k mark.  Now, if you can show or convince of 
revenue drop due to lack of confidence(the hardest part to do in a timely fashion), you should have them in no time.