This post was originally published on 10 March 2022.
The Ukraine Russia conflict has been hot for a while now and there have been many column inches (or centimetres) written on how this conflict is also being fought on the internet – I have written many of them myself. Many of my articles have been discussing the potential for the Russian and Ukrainian malicious cyber attacks to spill over into your businesses and organisations and urging you to have your cyber security sorted and tested before that happens. But nothing has really happened outside the conflict zone, except maybe some DDoS attacks that have slowed down, for instance BBC iPlayer.
Where’s the Russia-Ukraine Cyberwar? – Schneier on Security
So why should you do anything? You have that back-up drive, that you run every Friday night, the free anti-virus deletes the spam email and you are sure your staff are running the essential Windows security updates because they tell you so. Now these are extreme signs of complacency – but I will point out that I carried out a security and continuity review at Octagon Technology and Smart Thinking and we made some changes. At Octagon we have also been proactive with our contract clients and also with new clients seeking our help with back-ups, AV and RMM.
My articles were not “project fear”. It is true that in many wars everyone expects the big attack to come any day, but it may not come for many months. This gives both sides a chance to put their various assets in place – both defensive and offensive (Google the Phoney War). This does not mean that a real fighting war, with all its suffering, is not happening, but it does mean the conflict you need to prepare for has still to happen.
IT staff warned cyberattacks may follow Ukraine invasion • The Register
The various advisories that the National Cyber Security Centre have put out are things you need to do, so you are ready. There is a reason I have kept that post pinned to the top of my cyber security news page since it was issued – you need to take this seriously.
You need to know that if the worst happens and for instance you get the ransomware that was meant to go to a Ukrainian or Russian business, that your business will continue to operate. Do not think that you can just pay the ransomware demands as in this circumstance the malware is being used as a destructive weapon – there is no cyber criminal gang you can pay, there is no decryption key.
Destructive Malware Targeting Organizations in Ukraine | CISA
If you do not have the expertise to check and implement solutions that will enable you to have business continuity then get some help. If you want to know if your back-up will offer you enough protection – then check it against the standard at the top of this page – if it doesn’t or you are not sure what the standard means – then get some help.
How can we help you at Smart Thinking?
At Smart Thinking we have a range of frameworks, workflows and policies and procedures we can write for your business to help your managers and board members improve their cyber security.
- Security management
- Risk management
- Security strategy
- Real-time threat and
vulnerability assessment software - External compliance
- Business continuity
- Disaster recovery planning
- IT governance
- IT strategy
- IT management and policies
- Leadership culture and values
- Team Training
- Investigations
These are designed to work with you but we will also do it for you.
…and we are about to launch our Ransomware Playbook…
…and we have several cyber security Master Classes about to launch.
Clive Catton MSc (Cyber Security) – by-line and other articles