This is a perspective based on the current conflict with the Ukraine and Russia and the implications across the world.
What does it mean for your business?
Are you prepared?
Does your management understand the threats and the potential impacts?
An article in Forbes Magazine online today noted that attacks\incoming incidents from Russia have risen by approximately 800% in the past week.
Dr. J. S. Buitron, DCS, MSIA, CISSP
Doctor of Computer Science\Cybersecurity
Masters in Information Assurance\Cybersecurity
Certified Information Systems Security Professional
Lead Cyber Engineer at L3Harris
. . So the Ukrainians know exactly where the untrained, and nearly unaware Russian soldiers are, can anticipate their every move.
What a way to run a 'war!' Looks like this will be a short conflict. Another item, the young Russian men were supplied with MREs (Meals, Ready to Eat) that expired in the 1980s. Those meals are inedible, leaving the soldiers starving. And everyone knows that an army 'marches on its stomach!'
So I have read stories of how 11 Ukrainian moms are capturing the hungry Russian soldiers with food! Again, hospitality wins wars!
It looks like the only real fighting is going on over the internet, which means job security for us cyber pros.
Dr. J. Shuyler Buitron, DCS
Doctorate of Computer Science in CyberSecurity
Master's of Science in CyberSecurity, Valedictorian
MSIA, CISSP, MCSE ITIL v3, v2, Network+ IBM Power Systems certified for AIX and Linux
It takes fairly good coordination to get everyone synced up using encrypted radios, especially if they're rotating keys on a consistent basis for better security. With how it's going so far I'm not surprised to hear this.
An interesting perspective revealed, as to the intent of Russia and apparently aggession against NATO:
Apparently thanks for WikiLeaks.
You may find the following resources useful for seeing what is going on with the current conflict and how it may affect organisations and how to prepare to handle them, should they occur.
These resources are free, you may have to create a unique ID and Password to gain access to them.
They should be invaluable to all, to provide additional insights to the community,.
This is a US Gov't site under the Department of Homeland Security that provides continuously updated information on known Russian cyber-attack methods used against Ukraine and/or other European countries.
They also produced the following product-specific vulnerability list that is sortable and also downloadable in CSV, JSON.
While these aren't necessarily being exploited by Russia, earlier this year, CISA noted that with increased friction between the US and Russia you can expect to see every known vulnerability to be attacked on an increased frequency and intensity.
Hi to all
Massive DDOS attack demonstrate importance of DDOS protection
Not only state systems, business is under attack too.
To better understand how cybersecurity professionals are assessing the situation, we conducted a poll of (ISC)² members.
More than 260 (ISC)²-certified cybersecurity professionals from 41 countries participated, including Ukraine and the Russian Federation. They represent 33 different industries, with the most in financial services, followed by IT services and healthcare. These are their insights.
New blog posted to (ISC)² blog related to this topic (and links back to this conversation thread on the blog as well).
What are your biggest concerns? Are they the same mentioned in the blog?
@AndreaMoore I think the Blog captures the main issues that organisations are feeling at the moment.
However, unfortunately this underground cyber-war has been fought for many years prior to this conflict, based on who can find Zero Days, and obtain top dollar for them, before they are shutdown and brought to public notice. A entire economic business has been created.
This conflict is bringing out the dirty laundry, with even Hacking organisations actually known to be supporting the Russians, being attacked and their data being released by other, so called ethical groups.
Behind the scenes, it has already been stated by the cybersecurity arm of NATO, that Ukraine is already a member due to the cybersecurity attacks. China has gone very quiet, but if Russian hackers don't have the skills, then you can bet that the Chinese have these skills, and are supporting the Russians in the background.
However, a lot of this is out of the public eye, deliberately.
Now we see another set of issues coming up with DeDollarisation issues over who will sell Russian Oil and a group of three is being established between Russia, China and now India - an entire monetary system could be created in competition with existing Global systems. There is a great deal at stake here and it is moving very fast. There are greater issues with wide implications, not just the potential for WWII - this is a game on a global playing field. What a superb time to play it, whilst the pandemic keeps playing in the background.
The implications are frightening.
Now come the frightening repercussions of this conflict? Is the Health Sector prepared for a Wannacry-2?