Thursday, December 5, 2024
Homecyber securityFive Cybersecurity Countermeasures to Employ in Times of War

Five Cybersecurity Countermeasures to Employ in Times of War

Published on

SIEM as a Service

Many of us are unwillingly forced to take part in the Russia-Ukraine conflict, and while we can’t make an impact on the physical warfare, we should be proactive in defending our organizations from cyberattacks, and actively train our employees to do the same

Bad actors are well known for pursuing every opportunity, especially global events – as a vehicle to launch attacks, such as phishing emails, data breaches, and ransomware. More recently, we see a concerning spike in complex, malicious attacks originating from the conflict in Russia.

Outside of physical warfare, both Russia and Ukraine have been involved in a dedicated program of cyberwarfare. Participants in the conflict have launched cyberattacks on each other with entities supportive of Russia involved in data-wiping malware and taking websites offline with DoS attacks to prevent their use. Additionally, there have been malicious phishing-borne ransomware attacks and a range of other threats casting a sinister shadow that threatens every organization. These attacks are not always contained and often infect devices and websites that are not involved in the conflict. This includes corporate and personal devices as well. Employee social media accounts are also at risk of being hacked for the purpose of distributing false information or malware. With the Ukraine conflict surging, these attacks are expected to intensify with nearly everyone at risk of suffering the consequences of a sudden attack.

- Advertisement - SIEM as a Service

How to Spot a Conflict-Related Phishing Attack

If an email is received regarding the crisis that mentions interesting wartime footage or that points the reader to unknown websites where supposedly interesting content is hosted, there is a good chance it is a phishing email. If it requests assistance and it seems legitimate, make sure not to click on the link. Instead, google the organization and use the company’s legitimate website.

In such turbulent times, regard all emails that are Russia-Ukraine focused as suspicious and double-check the sender’s address. Beware of requests that ask for technical assistance such as running software or helping to take down websites. These might not only be illegal but may also be used to hack systems on the corporate network. Try to remember that during times of crisis, there is an increase in phishing attempts of all kinds as hackers take advantage of the situation. In this circumstance, employees need to stay updated from both a news and computing perspective.

To be proactive in the defense of computing environments, our security experts recommend:

  • Personal computer and phones: Install the latest operating system and security updates.
  • Implement 2FA/MFA: Use a phone number or authentication app as the second factor of authentication to all important applications, social media accounts (Facebook/Meta, Linkedin, Twitter, etc.), and personal email accounts. Backup email and ensure it is recoverable.
  • Change Passwords: If you are reusing a password in sites that hold your personal information, it is a good time to change your passwords.
  • Support a Culture of Security: Train your employees continuously, advise friends and family to do the same, and take an active role in creating a safer internet.
  • Defend Work from Home Environments: Install the operating system and security updates. If these are available you should see a notification on your computer or phone.

“In addition to the above actions, creating a culture of security throughout an organization is especially critical in situations where the volume of malicious cyber activity is at record levels,” said Mike Polatsekis the Co-founder and Chief Strategy Officerfor CybeReady. “This can be done through in-person or group training sessions or through cybersecurity training platforms that are now in widespread use to expedite and support a more security-aware employee base.”

Incorporate phishing training that includes behavioral adaptive simulation and deploy an automated solution that has been developed by experts in the email security space. Run an effective solution that does not interfere with other critical actions so that operations remain free of unnecessary problems. Additionally, provide employees with an empowering training experience which is possible with today’s more advanced training platforms.

Security executives are also advised to run an effective, automated security awareness program that requires little effort to manage and achieves fast results. This includes managing a people-centric program that adapts to one’s needs, driving a positive, engaging, security culture awareness program 24x7x365 and meets security awareness training compliance standards through focused training and testing. Finally, consider implementing regular security and compliance KPIs by preparing for cybersecurity training in ways that are easy, effective, and effortless. Schedule mandatory security training and reminders to all employees without haste and finally, track training completion by completing progress reports that provide multiple views of today’s corporate environment.

Latest articles

HCL DevOps Deploy / Launch Vulnerability Let Embed arbitrary HTML tags

Recently identified by security researchers, a new vulnerability in HCL DevOps Deploy and HCL...

CISA Warns of Zyxel Firewalls, CyberPanel, North Grid, & ProjectSend Flaws Exploited in Wild

The Cybersecurity and Infrastructure Security Agency (CISA) has issued warnings about several vulnerabilities being...

HackSynth : Autonomous Pentesting Framework For Simulating Cyberattacks

HackSynth is an autonomous penetration testing agent that leverages Large Language Models (LLMs) to...

Fuji Electric Indonesia Hit by Ransomware Attack

Fuji Electric Indonesia has fallen victim to a ransomware attack, impacting its operations and...

API Security Webinar

72 Hours to Audit-Ready API Security

APIs present a unique challenge in this landscape, as risk assessment and mitigation are often hindered by incomplete API inventories and insufficient documentation.

Join Vivek Gopalan, VP of Products at Indusface, in this insightful webinar as he unveils a practical framework for discovering, assessing, and addressing open API vulnerabilities within just 72 hours.

Discussion points

API Discovery: Techniques to identify and map your public APIs comprehensively.
Vulnerability Scanning: Best practices for API vulnerability analysis and penetration testing.
Clean Reporting: Steps to generate a clean, audit-ready vulnerability report within 72 hours.

More like this

Deloitte UK Hacked – Brain Cipher Group Claim to Have Stolen 1 TB of Data

Brain Cipher has claimed to have breached Deloitte UK and exfiltrated over 1 terabyte...

Shut Down Phishing Attacks -Detection & Prevention Checklist

In today's interconnected world, where digital communication and transactions dominate, phishing attacks have become...

Why the MITRE ATT&CK Evaluation Is Essential for Security Leaders

In today’s dynamic threat landscape, security leaders are under constant pressure to make informed...