Overnight, the Australian Cyber Security Centre (ACSC) issued an urgent advisory to Australian businesses, due the escalating situation between Ukraine and Russia:
“Australian organisations are encouraged to urgently adopt an enhanced cyber security position. Organisations should act now and follow ACSC’s advice to improve their cyber security resilience in light of the heightened threat environment.”
The threat landscape is always shifting, and these latest developments are increasing the level of risk for Australian businesses.
The advisory states that “There has been a historical pattern of cyber attacks against Ukraine that have had international consequences. Malicious cyber activity could impact Australian organisations through unintended disruption or uncontained malicious cyber activities. While the ACSC is not aware of any current or specific threats to Australian organisations, adopting an enhanced cyber security posture and increased monitoring for threats will help to reduce the impacts to Australian organisations.”
To stay secure, the ACSC recommends that organisations “Urgently adopt an enhanced cyber security posture. This should include reviewing and enhancing detection, mitigation, and response measures. Organisations should ensure that logging and detection systems in their environment are fully updated and functioning and apply additional monitoring of their networks where required.”
The advisory also encourages businesses to assess their preparedness to respond to an incident, including a review of Incident Response Plans (IRP) and Business Continuity Plans (BCP), and strongly recommends that organisations implement the ‘Essential Eight’ mitigation strategies.
You can read the ACSC advisory in full here.
To ensure that businesses have the utmost cyber resilience, it is crucial to evaluate their email security. Experts recommend a multi-layered, defence-in-depth approach to email security, and organisations with Microsoft 365 or Google Workspace, should seek to apply an additional layer of advanced threat protection from a specialist cloud email security vendor like MailGuard. Nine out of ten cyber attacks start with an email, so it is of paramount importance that your business, its’ people, processes, and tools, are of the highest standard.
Businesses and team members should be alert for:
- Phishing emails, impersonating trusted brands like Telstra, Australia Post, or major Australian banks like CBA, NAB, ANZ or Westpac, or utilities like Energy Australia and other providers. Similarly, software vendors like Microsoft, MYOB and Xero are popular targets, as are streaming services like Netflix and parcel delivery services like Fedex or UPS.
- Ransomware attacks are on the rise, so teams should be wary of clicking links or downloading attachments that may result in your data and systems being locked and held to ransom by cybercriminal organisations.
- Targeted BEC (Business Email Compromise) attacks are also common, impersonating senior executives like a CEO or President, the emails can be very simple and rely upon the influence of the sender to coerce employees to reveal data, sensitive credentials, or to transfer money.
For a few dollars per staff member per month, you can protect your business with MailGuard's predictive and advanced email security.
Talk to a solution consultant at MailGuard today about securing your company's inboxes.
Stay up-to-date with MailGuard's latest blog posts by subscribing to free updates. Subscribe to weekly updates by clicking on the button below.