Yesterday, the Cybersecurity Infrastructure & Security Agency (CISA), the federal agency charged with protecting the nation’s cyber infrastructure, released a notice from the National Cyber Awareness System. Based on recent malicious cyber incidents in Ukraine, CISA urges organizations across all sectors and of any size to be on alert for malicious cyber activity. The agency also provided a checklist of actions to take immediately.
To reduce the likelihood of destructive cyber intrusions, CISA recommends that business leaders immediately:
- Institute multi-factor authentication
- Ensure that software is up to date
- Disable all ports and protocols that are not essential for business purposes
- Review and implement strong controls for cloud services
- Conduct vulnerability scanning
CISA also advises that organizations take the following steps to detect potential intrusions:
- Identify and assess unusual network behavior. Enable logging to investigate issues better.
- Protect networks with antivirus and antimalware software and that these tools are up to date.
- Closely monitor traffic and review access controls if dealing with Ukrainian organizations
Additional recommendations can be found at CISA Insights: Implement Cybersecurity Measures Now to Protect Against Potential Critical Threats.
If your organization requires assistance with implementing these and other cybersecurity initiatives, reach out to our security experts.