Shields Up: Protecting Your Organization’s Data

Russia’s invasion of Ukraine could have an impact on data security efforts for local, regional and national companies. Therefore, every organization, large and small, must be prepared to respond to disruptive cyber activity.

Hostile Foreign Cyber Attacks are Likely
The Federal Bureau of Investigation (FBI) and Cybersecurity and Infrastructure Security Agency (CISA) are releasing a joint Cybersecurity Advisory (CSA) to warn organizations that Russian state-sponsored cyber actors have gained network access through the exploitation of default Multi-Factor Authentication Multi-Factor Authentication (MFA) is a security enhancement that requires users to verify their identity using multiple credentials before gaining access to a system, application, or service. This layered approach to security helps ensure that the person requesting access is indeed who they claim to be, significantly reducing the risk of unauthorized access. MFA generally involves a combination of two or more of the following factors: Something you know: A password, PIN, or answer to a security question. Something you have: A physical token, smart card, or a mobile phone to receive a verification code. Something you are: Biometric identifiers, such as a fingerprint, facial recognition, or voice, that uniquely identify the user. By requiring multiple forms of verification, MFA adds an additional layer of defense against potential threats, even if one factor (such as a password) becomes compromised. For instance, even if an attacker obtains a user's password, they would still need the second form of authentication to gain access. In today's digital landscape, where cyber threats are increasingly sophisticated, implementing MFA is a critical step for organizations to protect sensitive data and systems. It enhances security for end-users and across the enterprise, making it a fundamental component of a robust cybersecurity strategy. ( MFA Multi-Factor Authentication (MFA) is a security enhancement that requires users to verify their identity using multiple credentials before gaining access to a system, application, or service. This layered approach to security helps ensure that the person requesting access is indeed who they claim to be, significantly reducing the risk of unauthorized access. MFA generally involves a combination of two or more of the following factors: Something you know: A password, PIN, or answer to a security question. Something you have: A physical token, smart card, or a mobile phone to receive a verification code. Something you are: Biometric identifiers, such as a fingerprint, facial recognition, or voice, that uniquely identify the user. By requiring multiple forms of verification, MFA adds an additional layer of defense against potential threats, even if one factor (such as a password) becomes compromised. For instance, even if an attacker obtains a user's password, they would still need the second form of authentication to gain access. In today's digital landscape, where cyber threats are increasingly sophisticated, implementing MFA is a critical step for organizations to protect sensitive data and systems. It enhances security for end-users and across the enterprise, making it a fundamental component of a robust cybersecurity strategy. ) protocols and other known vulnerabilities.

Increased Phishing Scams
There has also been a considerable increase in phishing scams targeting end-users through text, email, and voice. Intrada Technologies continues to monitor the situation with Ukraine, using both the CSA and CISA as resources for warnings, recommendations, and awareness related to all cyber security threats known to these government agencies.   

SHIELDS UP – CISA’s New Cybersecurity Awareness Initiative
CISA has recently launched a helpful resource and reporting tool called SHIELDS UP. This site provides insight and guidance about current and emerging threats and allows organizations to submit information related to cyber incidents.

CISA encourages everyone to report unusual or suspicious cyber activity. If you notice any cyber activity that is unusual or concerning, contact your cybersecurity team at Intrada Technologies immediately. Our team of experts will quickly look into the issue and will report needed information to CISA.

At this time, the Intrada team continues to monitor situations. We are encouraged that most corporate endpoint protection and security metrics have a high success rate against current threats.   

What is Intrada Doing to Protect our Cybersecurity Clients?

Intrada is making patching and subscription updates a weekly priority. In addition, Intrada monitors vendor sites for any recommended updates and prioritizes them, so known exploited vulnerabilities identified by CISA on related systems are addressed promptly.  

Intrada is alerting all clients of the heightened threat level and encouraging all clients to report any suspicious activity. We cannot stress enough the importance of keeping your employees aware of the high threat level and growing number of attacks. Regardless of size, fancy firewalls, or high-end security software subscriptions, all organizations should adopt a heightened posture regarding both cybersecurity protection and educating their users.

Your organization’s employees are on the front-line – whether they are exposing or protecting your company data and resources. By hiring a cybersecurity firm like Intrada, businesses can provide their employees with a safe environment, but this organizations must go a step further. Training users on what to expect, avoid, and report is critical for the safety your data and business.    

Intrada is sending our monthly Tech Talk e-newsletter to highlight current threats and keep you and your staff aware of cybersecurity warnings and recommendations. Each Tech Talk newsletter features at least one cybersecurity article with a cybersecurity poster your organization can print, post, and share with employees to meet cybersecurity insurance’s monthly training requirements. 

We also recommend that businesses incorporate our cybersecurity articles into regular meetings to keep employees aware and diligent.    

Intrada is offering our PRO-Active clients training sessions to review current threats and scams, as well as educate your users on ways to protect themselves - both on company and personal computers.

Intrada is working hard to keep clients and their businesses safe. According to the FBI's newly-released annual Internet Crime Report, people lost more than $6.9 billion to internet crimes in 2021, more than a $2 billion increase from 2020. Our efforts to protect both users and organizations can potentially save a lot of money if your business is the target of a cyberattack.

For more information or to schedule an onsite cyber awareness training session, contact Intrada today by calling (800) 858-5745, using the form below, or emailing James Haywood at jhaywood@intradatech.com.

CISA - CISA leads the effort to enhance the security, resiliency, and reliability of the Nation's cybersecurity and communications infrastructure.

Cybersecurity Awareness Poster

Click here for a cybersecurity awareness training poster that Intrada Technologies clients may print and post to meet cybersecurity insurance requirements.