Shields Up: CISA Warns American Companies About Russian Hacking

pcmag.com:

The US Cybersecurity and Infrastructure Agency (CISA) says that American companies should be extra wary about potential hacking attempts from Russia as tensions with the country rise.

The White House says President Joe Biden told his counterpart Vladimir Putin that "while the United States remains prepared to engage in diplomacy, in full coordination with our Allies and partners, we are equally prepared for other scenarios" should Russia decide to invade Ukraine.

Even if Russia doesn't invade Ukraine, it has often targeted the country with what Wired has characterized as "many of the most costly cyberattacks in history." Those attacks might not always be confined to Ukraine, however, which is where CISA's new Shields Up campaign comes in.

"While there are not currently any specific credible threats to the U.S. homeland," CISA says, "we are mindful of the potential for Russia to consider escalating its destabilizing actions in ways that may impact others outside of Ukraine." CISA director Jen Easterly explains:

CISA says that it "recommends all organizations—regardless of size—adopt a heightened posture when it comes to cybersecurity and protecting their most critical assets." It also says that it's collaborated with its "critical infrastructure partners" to raise awareness of these risks.

The agency wants everyone to "reduce the likelihood of a damaging cyber intrusion," "take steps to quickly detect a potential intrusion," "ensure that the organization is prepared to respond if an intrusion occurs," and "maximize the organization's resilience to a destructive cyber incident."

CISA offers advice related to each of those focus areas on its website. It also says that, although "recent cyber incidents have not been