In current world events, the threats of Russian state-sponsored cyber acts are more present than ever. Most recently in a joint cybersecurity advisory, CISA and the Federal Bureau of Investigation warn organizations that Russian cyber actors have gained network access through exploitation of default MFA protocols and “PrintNightmare” vulnerability.
As the war between Russia and Ukraine rages on, malicious cyber activity against the U.S. homeland has grown significantly, which is why it’s essential for every business to be prepared for an attack.
It’s important to understand that security threats always exist, even without increased geopolitical tensions. Mark Cooley, VP of Security and Compliance at Involta, shares ways to keep your business and sensitive information more secure.
- Train your employees in cybersecurity principles.
- Install, use, and regularly update antivirus and antispyware software on every computer used in your business.
- Use a Next-Gen (advanced threat capabilities) firewall for your Internet connection and regularly review firewall rules.
- Make sure IDS/IPS (Intrusion Detection and Prevention) are enabled on the firewall.
- Download and install software updates for your operating systems and applications as they become available.
- Run vulnerability scans and patch and/or update vulnerable devices.
- Monitor devices using a SIEM (Security Incident and Event Monitoring) tool.
- Make backup copies of essential business data and information.
- Control physical access to your computers and network components.
- Secure your Wi-Fi networks. If you have a Wi-Fi network for your workplace, make sure it is secure and hidden.
- Require individual user accounts for each employee, regularly change passwords and implement multi-factor authentication
- Limit employee access to data and information based on business need, and limit the authority to install the software
It is often the basics that are overlooked in favor of more advanced security tools and techniques. Without the fundamentals, it is extremely difficult to control overall security risk.
Download our white paper “9 Common Security Mistakes” to find out what you can do to avoid common mistakes.
For more information on the related Department of Homeland Security bulletin, visit their website.