CISA Guidance on Increased Hacking Activity

To HCDE staff,

The Cybersecurity and Infrastructure Security Agency (CISA), FBI, NSA, and DS3 have issued guidance for critical infrastructure providers regarding increased cyber activity in response to current political posture and events. It is expected that an increased amount of disruptive cyber attacks will be levied on critical infrastructure as referenced in the attached brief. A link to the information page is also available here: Iranian Cyber Actors May Target Vulnerable US Networks and Entities of Interest

Although we at HCDE are not generally the subject of these activities, the document provides useful guidance for us as IT professionals to follow, and for you as users of electronic systems to be aware of. At HCDE we implement the recommended systems and vulnerability protections mentioned in the fact sheet, however, it only takes a single unsecured device, router, printer, or internet-connected appliance to grant access to your data and systems. Take a moment to self-assess your home devices such as printers, WiFi routers, and smart-appliances to ensure you have changed the default management passwords as they come from the factory as these are published and well known by bad actors.

In the meantime, observe safe practices here at work and also at home, with your own personal networks and devices and keep an eye out for unusual activity.

Thank you for your attention and assistance in keeping our environment safe.