Ensuring reliable cybersecurity is one of the most important tasks not only for government agencies, critical infrastructure facilities, but also for other organisations and institutions.
CERT-UA has prepared recommendations that will help to strengthen the security of systems and networks and effectively counter cyber threats. According to the recommendations of the State Service for Special Communications and Information Protection of Ukraine, cyber threats can be countered with simple steps.
Cyber incidents are primarily caused by the failure to comply with the typical requirements that have been relevant to the cyber threat landscape for the past 7 years. Thus, the most common vectors of primary compromise are:
Therefore, to protect systems and networks from attacks by intruders, processes should be established to detect and counteract cyber threats. Among the main ones:
We would like to emphasise the personal responsibility of managers, system administrators, information security administrators, as well as persons holding positions related to the direct performance of cybersecurity and cyber defence tasks, and urge them to take the recommendations into account immediately.
We would like to point out that the advice does not exclude the need to comply with basic standards, such as password policies, restrictions on user account rights, timely software updates, avoidance of outdated operating systems, etc.
You can read the recommendations in detail HERE