Harvard Business Review has stated that the "conflict in Ukraine presents perhaps the most acute cyber risk U.S. and western corporations have ever faced." Accelerated cyberattacks are already underway directed at Ukraine and may expand to nation-states providing support to Ukraine, including the United States.
Today, we are at a precipice of a hybrid war. Rogue nations and hacker groups have engaged in kinetic warfare and reactionary measures by attacking critical infrastructures by any means necessary. These attackers use persistent charges to weaken an entity's defenses and, ultimately, their operational continuance.
Within the U.S., industries such as financial organizations, government agencies and educational institutions are at a heightened risk. There have already been offensive measures used against Ukraine related to cyberattacks and, as tensions continue to increase, the risk of an attack on U.S. enterprises and government agencies also continues to rise. As targeted, state-sponsored cyberattacks begin to unfold on business and critical infrastructure in the U.S. and allied nations, it's necessary to assess the current state of risk and take appropriate steps to prevent, detect and recover from a sophisticated threat matrix.
While direct cyberattacks on U.S. entities are unlikely at this moment, a digital assault can still cause Western enterprises significant harm if a partner is hit. For example, without the proper preventative measures in place, your critical infrastructure can be put at risk if a member within your supply chain falls victim to an attack. Third-party attacks are common, with 51% of organizations experiencing a data breach caused by a third party, according to Ponemon Institute.
So how can we as a nation mitigate retaliatory measures taken against our establishments that keep a country active?
War is unpredictable, but the steps you take today to minimize the effects of an attack could save your business tomorrow. U.S. cybersecurity officials continue to urge federal agencies and large organizations to remain vigilant against the threat of increased attacks due to the Ukrainian conflict. The Cybersecurity & Infrastructure Security Agency states, "CISA recommends all organizations—regardless of size—adopt a heightened posture when it comes to cybersecurity and protecting their most critical assets."
At ConvergeOne, our engineering resources are on high alert for the possibility of cyberattacks against U.S. businesses and government agencies and we can't stress enough the importance of staying vigilant and prepared. Throughout the past 15 years, we have seen various cyberattacks affect our economy in different ways—from limiting access to goods and services to data retrieval affecting schools, cities, and overall businesses.