The NCSC has issued updated guidance on the evolving threat from Russian state actors and cyber criminals due to the ongoing war in Ukraine.
The joint Cybersecurity Advisory (CSA) from the cybersecurity authorities in the UK, USA, Australia, Canada and New Zealand warns that: “Evolving intelligence indicates that the Russian government is exploring options for potential cyberattacks.” And in particular, warns the NCSC, the threat to critical national infrastructure. However, all organisations should take action in light of the heightened risk of cyber attacks which could impact anyone as collateral damage.
The NCSC recommends immediate actions for all organisations to take to protect their networks:
- prioritising the patching of known exploited vulnerabilities
- enforcing multi-factor authentication (MFA)
- monitoring remote desktop protocol (RDP) and
- providing end-user awareness and training
The Cybersecurity Advisory warns:
U.S., Australian, Canadian, New Zealand, and UK cybersecurity authorities urge critical infrastructure network defenders to prepare for and mitigate potential cyber threats—including destructive malware, ransomware, DDoS attacks, and cyber espionage—by hardening their cyber defenses and performing due diligence in identifying indicators of malicious activity.
The full text of the advisory can be read on the CISA website.