FYSA
In the lead up to the holidays and in light of persistent and ongoing cyber
threats, the Cybersecurity and Infrastructure Security Agency (CISA) today
released a CISA Insights<https://go.usa.gov/xe6fG> with recommended actions
that leaders should take to protect against potential cyber threats from
sophisticated threat actors, including nation-states and their proxies. The
recommended actions are not new but are intended to inform critical
infrastructure executives and senior leaders with steps they can take to
protect their business as well as prepare in the event a cyber incident occurs.
A few of the immediate actions CISA strongly urges critical infrastructure
leaders to take are:
* Increase organizational vigilance by ensuring there are zero gaps in
Information Technology (IT)/Operational Technology (OT) security personnel
coverage and staff provides continual monitoring for all types of anomalous
behavior. Security coverage is particularly important during the winter holiday
season when organizations typically have lower staffing.
* Prepare your organization for rapid response by adopting a state of
heightened awareness.
* Ensure your network defenders implement cybersecurity best practices.
Enforce multi-factor authentication and strong passwords, install software
updates (prioritizing known exploited
vulnerabilities<https://www.cisa.gov/known-exploited-vulnerabilities-catalog>),
and secure accounts and credentials.
* Stay informed about current cybersecurity threats and malicious
techniques. Encourage your IT/OT security staff to
subscribe<https://public.govdelivery.com/accounts/USDHSUSCERT/subscriber/new>
to CISA’s mailing list and
feeds<https://us-cert.cisa.gov/mailing-lists-and-feeds> to receive
notifications when CISA releases information about a security topic or threat.
* Lower the threshold for threat information sharing. Immediately report
cybersecurity incidents and anomalous activity to
CISA<mailto:central@xxxxxxxx>, the FBI<https://www.ic3.gov/>, and/or your
organization’s Sector Risk Management
Agency<https://www.cisa.gov/sector-risk-management-agencies>.
For the complete list of immediate actions that include actions for improving
functional resilience and incident response resources, executives and IT
professionals should review this CISA Insights, which can be found at
https://www.cisa.gov/publication/preparing-and-mitigating-potential-cyber-threats.
Theresa A. Masse
Cyber Security Advisor, Region 10 (Oregon)
Cybersecurity and Infrastructure Security Agency
Department of Homeland Security
Phone: (503) 930-5671
Email: theresa.masse@xxxxxxxxxxxx<mailto:theresa.masse@xxxxxxxxxxxx>
[cid:image002.png@01D7F188.36AD1CC0]