Cyberattacks against Ukraine have put a lot of companies on high alert and they are preparing to defend themselves. Some expect the fallout could be devastating, but others believe that proper preparations will protect them from most common hacks. Experts say it is important for businesses to prepare now so this doesn’t become an issue later in 2019 or 2020 when there’s more money involved.
The “cybersecurity news” is a company preparing for the fallout from cyberattacks against Ukraine. The attacks have been ongoing since 2016, and have reached a point where they are no longer just isolated incidents.
Businesses such as utilities, manufacturing, and financial services firms are ready for cyberattacks targeting Ukraine, as US authorities warn of Russian-linked hacking that might spread across borders and sectors.
As they prepare their computer systems to withstand digital attacks that may precede a Russian military move into Ukraine, several organizations are looking into their relationships to Ukrainian enterprises as well as suppliers with a presence in the nation.
Subscribe to our newsletter
Cybersecurity WSJ Pro
WSJ’s worldwide team of reporters and editors provide cybersecurity news, analysis, and insights.
On Tuesday, people unloaded an aircraft carrying US security support to Kyiv.
Getty Images/Sergei Supinsky/Agence France-Presse
Using harmful software known as WhisperGate, hackers have vandalized hundreds of Ukrainian official websites and damaged computer systems at at least two of the country’s institutions in recent weeks. Microsoft Corp. security authorities stated the virus has impacted “several government, charity, and information technology organizations, all headquartered in Ukraine.”
Microsoft did not respond to a request for further information. Officials in Ukraine have blamed the strikes on Russia or its operatives. The Kremlin has categorically rejected any connection.
Cybersecurity experts warn that the worst-case scenario would be growing breaches similar to the NotPetya assault on a Ukrainian accounting business in 2017, which enabled hackers to spread to other corporate networks, costing an estimated $10 billion in worldwide damage.
“Right now, I’ve placed my crew on high alert.” This isn’t the first time a political scenario has resulted in cyberattacks, according to Selim Aissi, chief information security officer of Pleasanton-based Blackhawk Network Holdings Inc.
Mr. Aissi noted that just because Blackhawk doesn’t conduct business in Ukraine doesn’t mean it’s immune to threats relating to the nation. Employees at the company’s security operations center, or SOC, work in shifts, monitoring government security warnings and tweaking programs to look for hacking evidence.
In Kyiv, the US Embassy.
GLEB GARANICH/REUTERS/GLEB GARANICH/REUTERS/GLEB GARANICH/REUTERS/
“Having someone on watch at all times is crucial in situations like these,” Mr. Aissi added. “We need to keep an eye out for emerging ransomware variations.” We must keep an eye out for any additional nation-state activity.”
Cyberattacks are an important part of contemporary warfare, and they may swiftly spread throughout a global economy that relies on closely linked technological supply chains. As a result, according to Scott Algeier, executive director of the Information Technology Information Sharing and Analysis Center, the digital explosion radius for prospective victims is expanding.
Mr. Algeier’s foundation, which warns IT businesses about security dangers, said it keeps in touch with its members concerning Ukraine on a regular basis. The Electricity Information Sharing and Analysis Center, a group committed to defending utilities, claimed it is doing the same.
Mr. Algeier said, “We need to prepare for the genuine risk that the tactics employed against Ukraine may be utilized against the United States and others.”
On Monday, President Biden spoke to European leaders about Russia and Ukraine.
Should the Kremlin chooses to deploy its soldiers into Ukraine, US officials said they are preparing fresh penalties and export curbs aimed at crippling the Russian economy. “We can reply the same way, with cyber,” President Biden stated last week if Russia commits cyberattacks against the United States.
In recent weeks, officials in nations such as the United Kingdom, Canada, and the United States have recommended corporations to strengthen their security procedures in order to avoid a possible increase in Russia-backed cyberattacks.
The U.S. Cybersecurity and Infrastructure Security Agency compared the potential effects of the WhisperGate malware observed in Ukraine to the 2017 NotPetya hack. That attack, which the White House later attributed to the Russian military, led to hundreds of millions of dollars in expenses and lost sales at companies such as FedEx Corp. , drugmaker Merck & Co. and Danish shipping giant A.P. Moller-Maersk A/S.
Officials in the United States are concerned about interruptions to corporations that supply key infrastructure, such as utilities or transportation, because they believe that a far-off geopolitical war would have an impact on everyday life in the United States.
“If interacting with Ukrainian entities, take extreme care to monitor, examine, and isolate traffic from such organizations; rigorously check access restrictions for that traffic,” CISA warned corporations in a Jan. 18 advisory.
In reaction to Washington’s pressure on Russia, the Department of Homeland Security issued a second advisory on Sunday, warning of cyberattacks against US companies, according to CNN. DHS did not reply to a request for comment, and CISA, a division of DHS, refused to provide any further information.
More From Cybersecurity WSJ Pro
Copyright ©2022 Dow Jones & Company, Inc. All Rights Reserved. 87990cbe856818d5eddac44c7b1cdeb8