Based on the recent situation with Iran, The Department of Homeland Security's Cybersecurity and Infrastructure Security Agency (CISA) issued guidance on January 6th, 2020, to private organizations to adopt a state of heightened awareness. We recommend disseminating this guidance to your IT leadership and performing an assessment to determine how susceptible your organization is to the techniques employed by these Iranian Advanced Persistent Threats (APTs) or highly trained and organized hacking groups.
In short, there are five recommended actions:
Iran has a competent and sophisticated state-sponsored network of APTs but unlike traditional hackers, these APTs operate with different objectives. Where most hackers are using ransomware to encrypt data to extort a ransom, Iranian APTs are using advanced techniques to attempt to break into U.S. government networks to steal sensitive data and destroy and disrupt critical systems.
They also have historically targeted critical infrastructure, like power stations, dams, and transportation networks, as well as institutions that underpin the economy like the New York Stock Exchange, NASDAQ, and major banks. They are also known to target private industry with the goal of industrial espionage.
As always, organizations should keep cybersecurity top of mind, and continually assess and evolve their cybersecurity maturity in the face of increasingly sophisticated threats.
DGC’s IT Risk Assurance & Advisory Team takes a proactive approach into every engagement. We assess each client’s individual circumstances and put together a thorough and efficient plan of action to ensure compliance. For more information, contact a member of your client service team or Nick DeLena, CISSP, CISA, CRISC at 781-937-5191 / email@example.com.