Staying Vigilant Through the Holidays
Issue
30 November 2021
Editor
Dan McCarthy
Editor in Chief
Amery Smock
Date
11/25/2021
-
Analysis
The FBI and CISA are reminding critical infrastructure operators to remain vigilant through the holidays and weekends. The article states that APT’s could likely strike at this time, given that the majority of employees are not working. They recommend reviewing both the incident response plans and communication plans for those physically away from the company [1].
We have seen that APTs are more likely to attack at times when there are fewer employees at work, such as the weekends and holidays. With this in mind, critical infrastructure operators should review their incident response for the upcoming holidays to ensure the best plan of action is taken in case of an incident. Below are some sources for supplemental guidance [2, 3]. -
Sources
[1] Reminder for Critical Infrastructure to Stay Vigilant Against Threats During Holidays and Weekends. https://us-cert.cisa.gov/ncas/current-activity/2021/11/22/reminder-critical-infrastructure-stay-vigilant-against-threats
[2] New Federal Government Cybersecurity Incident and Vulnerability Response Playbook https://us-cert.cisa.gov/ncas/current-activity/2021/11/16/new-federal-government-cybersecurity-incident-and-vulnerability
[3] Ransomware Response Checklist https://www.cisa.gov/sites/default/files/publications/CISA_MS-ISAC_Ransomware%20Guide_S508C_.pdf
Analyst