U.S. warns organizations to raise ‘cyber shields,’ citizens to leave Ukraine

Feb 14, 2022 - 11:57 AM
Cybersecurity Lock on Gold Wall

The Cybersecurity and Infrastructure Security Agency today issued a rare “Shields Up” message recommending all U.S. organizations take immediate steps to enhance their ability to detect and protect against a cyber intrusion. The action follows a State Department advisory Friday urging Americans to immediately leave Ukraine due to increased threats of Russian military action. 

“While there are not currently any specific credible threats to the U.S. homeland, we are mindful of the potential for the Russian government to consider escalating its destabilizing actions in ways that may impact others outside of Ukraine,” which could result in impacts to public safety, the advisory notes. 

John Riggi, AHA national advisor for cybersecurity and risk, said, “As we cautioned in our Feb.1 special cyber advisory and prior, tensions are continuing to increase along the Russian-Ukrainian border. Based upon the current government warnings, we strongly urge all organizations to identify and recall any U.S. citizen staff assigned in Ukraine. We also recommend that all organizations assess any direct and third-party service providers, network connections, email and data exchanges from Russia and Ukraine, and consider blocking such connections. Geo-fencing all network traffic to/from Ukraine and Russia, although limited in effectiveness, may help reduce potential cyber risk.”
 

Related News Articles

Headline
Guidance offers steps to create, maintain operational technology asset inventory for protection
The Cybersecurity and Infrastructure Security Agency, Environmental Protection Agency, National Security Agency, FBI and international agencies Aug. 13…
Headline
DOJ announces disruption of BlackSuit ransomware group 
The Department of Justice Aug. 11 announced a series of actions taken against the BlackSuit ransomware group, also known as “Royal,” including the disruption…
Headline
Tactics by Scattered Spider cybercriminals highlighted in joint advisory 
The FBI, Cybersecurity and Infrastructure Security Agency and international agencies July 29 released a joint advisory on recent tactics by the Scattered…
Headline
Microsoft says China-based threat actors behind SharePoint attacks 
Microsoft July 22 released an update on the ongoing cyberattacks to SharePoint servers used within organizations, attributing the incidents to China-based…
Headline
Agencies warn of activity by Interlock ransomware
The FBI, Cybersecurity and Infrastructure Security Agency, Department of Health and Human Services, and Multi-State Information Sharing and Analysis Center…
Headline
Microsoft issues alert on vulnerabilities in ongoing SharePoint attacks 
Microsoft July 19 issued an alert about active attacks from vulnerabilities targeting SharePoint servers used within organizations. The incidents have not…