On the 28th of January, the NCSC issued a statement warning British organisations of potential spill-over from the rampant malicious cyber-attacks in and around Ukraine in the lead up to the Russian invasion.
We want to echo and support their call to preparation by providing brief, top-level details on basic and advanced practices that can fortify yourself and your organisation against potential threats.
Keeping everything updated makes it far more difficult for attackers to compromise devices and systems. Developers regularly review the products or services they support. In doing so, they identify potential vulnerabilities in security, bugs, and opportunities to improve performance. Critical practice is to back up your data before an update to avoid possible complications.
You can monitor the status of updates through MDM logs. It is also possible to restrict access to data for devices that are not up to date.
Organisations can often be interconnected. Make sure you audit third-party access to your systems.
Third party reviews are especially important in critical infrastructure organisations such as healthcare, finance, agriculture, and more.
Training staff how to identify and report phishing emails, calls, malware, and other threats can significantly reduce the likelihood of an unassuming actor compromising security. This is one of the most common adversary tactics and can come in various forms.
Knowing how to respond in the event of an attack is crucial.
Having a comprehensive plan in place allows for faster response times, which minimises damages and can make the whole process much easier to deal with.
An attacker would likely perform reconnaissance across an organisations public facing network to identify information leakage and possible routes of attack.
Review all public facing websites and networks. The aim is to look for vulnerabilities in a similar way to an attacker. From there, and potential weak points can be augmented and fortified.
For advanced practises, hiring an outside entity of experts is the optimal way of carrying out the most effective testing.
At the Cyber Defence Service, we can run a range of assessments to help secure your organisation. Feel free to contact us, and we can discuss the next steps.