The Cybersecurity and Infrastructure Security Agency (CISA) has posted a “Shields Up” warning, alerting organizations to the possibility of cyberattacks as tensions escalate between Ukraine and Russia.
“The Russian government understands that disabling or destroying critical infrastructure — including power and communications — can augment pressure on a country’s government, military, and population and accelerate their acceding to Russian objectives,” CISA wrote.
Cyberattacks have been a central part of Russia’s playbook in the past, CISA said, particularly in Ukraine in 2015. And while CISA said the U.S. homeland is not now facing any specific, credible threats, Russia could “consider escalating its destabilizing actions in ways that may impact others outside of Ukraine.”
CISA advised organizations of all sizes to ensure:
- That personnel use multi-factor authentication when logging on remotely to their networks or for privileged and administrative access
- Software is up to date to lessen the chances of a cyber intrusion
- IT departments have turned off any ports or protocols that aren’t needed to conduct business
- Strong controls are in place if using cloud services
CISA said any incidents or suspicious activity should be reported to them or the FBI at the FBI’s CyWatch line, at 855-292-3937, or CyWatch@fbi.gov.