Security Emergency

If your organization is experiencing an active security incident, follow the steps below and contact our emergency response team immediately.

Contact Our Emergency Response Team

TIDALBAY customers with an active subscription have 24/7 access to our security incident response team.

Emergency Hotline (24/7)

+1 (800) 555-TESS

Available for all TIDALBAY customers

Emergency Email

emergency@tidalbay.com

Response within 15 minutes

Immediate Steps to Take

While waiting for our response team, take these actions to contain the incident.

  1. 1

    Do not panic — document everything

    Record timestamps, affected systems, and any error messages or unusual behavior you observe. Screenshots and logs are invaluable for investigation.

  2. 2

    Isolate affected systems

    Disconnect compromised devices from the network. Do NOT power them off — forensic evidence may be lost. Simply unplug the network cable or disable Wi-Fi.

  3. 3

    Reset compromised credentials

    If credentials have been compromised, immediately reset passwords for affected accounts. Enable MFA on any accounts that do not already have it.

  4. 4

    Preserve evidence

    Do not delete suspicious emails, files, or logs. These are critical for investigation. Forward phishing emails as attachments (not inline) to your security team.

  5. 5

    Notify your internal security team

    Alert your CISO, IT security team, and management. Follow your organization's incident response plan if one exists.

  6. 6

    Contact TIDALBAY emergency response

    Call our 24/7 hotline or email our emergency team. Provide your TIDALBAY tenant ID, a description of the incident, and any evidence collected.

Common Security Emergencies

Active Phishing Campaign

Multiple employees receiving targeted phishing emails. Use TIDALBAY Triage to quarantine suspicious messages and Coach to alert at-risk users.

Credential Compromise

Employee credentials found on dark web or used in unauthorized access. Immediately reset passwords and review access logs in TIDALBAY.

Ransomware / Malware

Systems encrypted or infected with malware. Isolate affected devices, do not pay ransom, and contact our emergency response team immediately.

Data Breach / Exfiltration

Sensitive data accessed or transferred to unauthorized parties. Preserve all logs and contact our team for forensic investigation support.

Business Email Compromise

Executive impersonation or vendor fraud attempts. Alert finance team, freeze any pending wire transfers, and report through TIDALBAY.

Insider Threat

Suspicious employee behavior or unauthorized data access. Review TIDALBAY risk scores and activity logs. Contact HR and legal before confrontation.

External Resources

Additional resources for reporting and responding to security incidents.

CISA — Report a Cyber Incident

U.S. Cybersecurity & Infrastructure Security Agency

FBI IC3 — Internet Crime Complaint Center

Report internet-related criminal activity

NIST Incident Response Guide

Computer Security Incident Handling Guide (SP 800-61)

Not an emergency?

For general support or non-urgent security questions, reach out through our standard channels.

Contact SupportView Documentation