How not to respond to a targeted malware attack