With the rapidly changing political situation around the world organisations have a responsibility to make sure their cyber security house is in order.
Ukraine-Russia invasion: Russia launches attack on Ukraine from several fronts – BBC News
This applies to all the systems and software you use – check now.
WordPress
This morning we have noticed an increase in the number of malicious login attempts against WordPress websites. Why is WordPress a target? The quote above I took from their website says it all – it is a target rich environment.
This prompted us to implement various extra security precautions on the some of the WordPress sites Smart Thinking is involved with and I know the team over on Octagon are doing the same for their sites and for the ones that client’s are on contract for.
One of the actions we undertook was to check that all users have 2FA activated – and where necessary we have enforced the policy of “all users must use 2FA to access the site”. We have also checked that the global administrator type accounts are limited to those users who really need them.
As I said the team at Octagon are carrying out these checks for their clients on contract – for a small fee they could be helping you check your WordPress security if you are unsure how to proceed.
Clive Catton MSc (Cyber Security) – by-line and other articles
Further Reading
Cyber-attacks bring down many Ukraine websites – BBC News
Hundreds of Ukraine computers hit with wiper malware – ESET • The Register – ESET is Octagon Technology’s preferred protection software
Ukraine hit by cyberattacks • The Register
Second data wiper attack hits Ukraine computer networks – The Record by Recorded Future
