Further signs are emerging of Russia using digital means to wage war on Ukraine in conjunction with the more conventional physical forms. This includes the use of targeted cyberattacks. The acting deputy head of the Security Service of Ukraine’s (SSU) Cybersecurity Department states that Moscow was responsible for almost 1,200 cyberattacks and other critical cyber incidents through the first three months of 2023.
The trend has been noted by JP Perez-Etchegoyen, CTO of Onapsis, as he explains to Digital Journal.
Looking at the types of activities linked to Russia, Perez-Etchegoyen finds: “Political disruption and unrest can have a far-reaching impact on the rest of the globe. Cybersecurity is already a priority concern for organisations, as data breaches and cyberattacks are irrefutably on the rise and hackers are becoming increasingly sophisticated and persistent.”
There are measures that businesses need to consider if they are to resist the cyber-wave and put in place appropriate defences.
Perez-Etchegoyen says: “To prevent the risks and impact of a cyberattack, businesses need to relook at their current cybersecurity environment, particularly as it relates to their business-critical applications which are often overlooked.”
In terms of the activities that firms can consider, Perez-Etchegoyen recommends: “Business-critical applications are a very attractive target to cybercriminals as they are essential to everyday operations. If interfered with it would impact business continuity and if sensitive data is stolen or made inaccessible, it could have devastating consequences not only for the business itself but also its customers, suppliers and partners.”
Business intelligence is also important, ang with sharing information. Perez-Etchegoyen says that current technologies also need to be used: “As such, organisations need to be able to not only detect and respond to threats quickly but also identify and reduce any vulnerabilities to ensure the protection of business-critical data.”
Here Perez-Etchegoyen puts an emphasis upon being ahead of the moves of criminal actors and rogue states: “By adopting technologies that enable unified threat, risk, and compliance management across the entire organisation, businesses will be able to take a proactive, instead of reactive, approach to cybersecurity.”
Corporate culture is also important, along with making everyone see their contribution within the firm. Here Perez-Etchegoyen states: “Turning cybersecurity into a collective responsibility shared by everyone, in addition to integrating robust cybersecurity solutions, will be key to ensuring the safety and security of organisations across the UK.”