A7 Insufficient Detection and Response (NEW). Not detecting we have been compromised, due to lack
of controls, detection applications. Not performing our due diligence and due care on our
applications, systems, and our response to compromise. Not responding in a proper way to compromise,
not informing anyone, informing too late or just ignoring the incident (at best plugging the leak).
We need to not just protect against this attack, but future similar attacks, patch software and
applications, close ports.