Equifax made one PR blunder after another, writes Danielle Wiener-Bronner for CNN Money. What surprises me is that many companies still think that "this couldn't happen to us." Then it does. I think every company should assume that they will be attacked by hackers and that a crisis communications plan should be developed in advance.

I would even go one step further and create an escalation strategy so that when the attack does happen, employee X knows what to do, so does Y and Z. Maybe companies will start paying attention when hackers bring down critical assets in our country?

Today it's your social security number. Tomorrow it's your pacemaker.