Biden warns private sector to brace for Russian cyberattacks

critical-infrastructure-freepik1170x658 (1).jpg

The White House urged private organizations to bolster their cybersecurity defenses, as intelligence suggests Russia is exploring options for potential cyberattacks to target U.S. critical infrastructure.

“The U.S. Government will continue our efforts to provide resources and tools to the private sector, including via CISA’s Shields-Up campaign and we will do everything in our power to defend the Nation and respond to cyberattacks,” the White House said.

As much of the U.S.’s critical infrastructure is owned and operated by the private sector, the administration is urging private companies to take the following steps immediately to protect the critical services:

Mandate the use of multi-factor authentication on systems to make it harder for attackers to gain access
Deploy modern security tools on computers and devices to continuously look for and mitigate threats
Check with cybersecurity professionals to make sure that systems are patched and protected against all known vulnerabilities, and change passwords across networks so that previously stolen credentials are useless to malicious actors
Back up data and ensure offline backups are beyond the reach of malicious actors;
Run exercises and drill emergency response plans to be prepared to respond quickly to minimize the impact of any attack
Encrypt data so it cannot be used if stolen
Educate employees on common tactics that attackers will use over email or through websites, and encourage them to report if their computers or phones have shown unusual behavior, such as unusual crashes or operating very slowly
Engage proactively with local Federal Bureau of Investigation (FBI) field office or the Cybersecurity and Infrastructure Security Agency (CISA) Regional Office to establish relationships in advance of any cybersecurity incidents. Please encourage IT and Security leadership to visit the websites of CISA and the FBI, where they will find technical information and other useful resources.

The administration is asking technology and software companies to implement the security practices mandated in the President’s Executive Order, Improving our Nation’s Cybersecurity, and build security into products from the ground up.

Maria Henriquez joined Security Magazine in 2019 as its Associate Editor. Since then, she has been covering the security industry and reporting on issues affecting enterprise security leaders, to include cybersecurity, leadership and management, risk and resilience and pressing security challenges facing the industry.

Security’s digital transformation is now entering stage 5. Complex security technologies are connected to HR systems, global security operations centers, and other building technologies in a world where employees now work in two places: home and the corporate office.

Service reliability underpins every modern business. Without reliable services, organizations cannot build the trust required to keep their customers loyal or free up time to focus on product innovation and differentiation.