28 February 2022
Digital infrastructure protection measures resulting from the Ukrainian situation
Misure di protezione delle infrastrutture digitali derivanti dalla situazione ucraina

Russia-Ukraine clash, because it is essential to strengthen computer security systems.

In this globally critical period, the Computer Security Incident Response Team (CSIRT) highlights the significant cyber risk deriving from possible collateral impacts on ICT infrastructures interconnected with the Ukrainian cyberspace. 

According to numerous forecasts, the current clash could be accompanied by cyber attacks in which new cyber attack strategies and tools will be implemented. Scenario that projects us into a real cyberwar.

The CSIRT has adopted measures to protect national digital infrastructures; with particular reference to entities, organizations and companies that have telematic interconnections with the nation today under attack. Therefore, as strongly suggested by the bulletin of the National Cybersecurity Agency , it is necessary to adopt every possible mitigating action in order not to jeopardize the IT security of one’s company. Organisational, procedural and technical security measures such as:

  • verification of the consistency and offline availability of the backups necessary for the recovery of the core business services in particular;
  • prioritization of internet-facing system patching activities, identification of critical assets for carrying out the main activities;
  • creation, updating, maintenance and periodic exercise of incident  response capabilities , a business continuity and resilience plan in the event of loss of access or control of an IT (IT) and/or operational (OT) environment;
  • updating of cyber incident management plans based on any architectural changes introduced;
  • monitor service accounts and administrative accounts for anomalous activity;
  • ensure all remote access requires multi-factor authentication (MFA), especially for VPN services, corporate external-facing portals (extranets), and email access (e.g., OWA or Exchange Online).

With this communication, in difficult days like these, MAC invites you to contact your security provider or our division of cyber security experts to enhance corporate IT security, at cybersecurity@macsolution.it

Other News