The U.S. Cybersecurity & Infrastructure Security Agency, (CISA), which is a part of the U.S. Department of Homeland Security has issued an unusual warning to businesses, preparing them to defend against cyber attacks originating from Russia.
“Every organization—large and small—must be prepared to respond to disruptive cyber activity,” the agency says in its warning.
“In the wake of continued denial of service and destructive malware attacks affecting Ukraine and other countries in the region, we are working very closely with our Joint Cyber Defense Collaborative (JCDC) and international computer emergency readiness team (CERT) partners to understand and rapidly share information on these ongoing malicious cyber activities,” the CISA statement says.
CISA further recommends that “all organizations—regardless of size—adopt a heightened posture when it comes to cybersecurity and protecting their most critical assets. Recognizing that many organizations find it challenging to identify resources for urgent security improvements, we’ve compiled a catalog of free services from government partners, and industry to assist. Recommended actions include:
Reduce the likelihood of a damaging cyber intrusion
- Validate that all remote access to the organization’s network and privileged or administrative access requires multi-factor authentication.
- Ensure that software is up to date, prioritizing updates that address known exploited vulnerabilities identified by CISA.
- Confirm that the organization’s IT personnel have disabled all ports and protocols that are not essential for business purposes.
- If the organization is using cloud services, ensure that IT personnel have reviewed and implemented strong controls outlined in CISA’s guidance.
- Sign up for CISA’s free cyber hygiene services, including vulnerability scanning, to help reduce exposure to threats.
BNI Operatives: Situationally aware.
As always, stay safe.