Is your business prepared for a cyberattack?

Anytime the US finds itself in the midst of escalating international tensions, the threat of a cyberattack is at its peak. Even if there’s been no specific, identified threat against US businesses, CISA (Cybersecurity and Infrastructure Security Agency) has encouraged all businesses to take stock and prepare for the possibility of a cyberattack.

The first line of defense is to ensure that your software is up to date. Updates that address known vulnerabilities should be prioritized. You can find a complete list of known vulnerabilities at CISA’s site (https://www.cisa.gov/known-exploited-vulnerabilities-catalog).

You should also use multi-factor authentication for remote access to your network and access to all sensitive information within your organization.

If you’re using cloud services, follow CISA’s guidance for strong security configurations (https://www.cisa.gov/uscert/ncas/analysis-reports/ar21-013a).

Watch for unusual network behavior, and have antivirus and antimalware software installed and up to date on all company systems.

Have a plan in place for what to do if an incursion occurs, and make sure each member of your cyber incident response team understands their role. This includes having backup procedures in place so that your information remains safe in the event that your computer systems are compromised.

You can find a complete list of recommendations and resources for your business at https://www.cisa.gov/shields-up, the Shields Up website.