The Cybersecurity and Infrastructure Security Agency urges U.S. organizations to strengthen their cybersecurity defenses against data-wiping attacks recently seen targeting Ukrainian government agencies and businesses.
CISA is now urging business leaders and U.S. organizations to take the following steps to prevent similar destructive attacks on their networks.
“This CISA Insights is intended to ensure that senior leaders at every organization in the United States are aware of critical cyber risks and take urgent, near-term steps to reduce the likelihood and impact of a potentially damaging compromise,” warns a new CISA Insights bulletin.
While CISA’s recommendations are in response to the recent cyberattacks on Ukraine, the following suggested steps are also good advice to prevent any network intrusion, including those leading to ransomware attacks.
If working with Ukrainian organizations, take extra care to monitor, inspect, and isolate traffic from those organizations; closely review access controls for that traffic.
Maximize the organization’s resilience to a destructive cyber incident: Test backup procedures to ensure that critical data can be rapidly restored if the organization is impacted by ransomware or a destructive cyberattack; ensure that backups are isolated from network connections.