The New Nation-State Normal

  /     /     /  
Publicated : 22/11/2024   Category : security

The New Nation-State Normal


Cyber attacks sponsored by nation-states are here to stay. If you want your organization to be here to stay, youd best prepare for the worst.



If youve looked at the news in the last six month or so, you know that there is compelling evidence that hackers in, or sponsored by,
Russia launched a sustained attack
against the US federal election in 2016. In December 2016,
the power grid in Ukraines capital Kiev
was hit by hackers from Russia in a successful attack that disrupted power to the city for two days. According to
a superb article in Wired
, the attack in Ukraine was just a taste of what we should now think of as the new normal.
What, precisely, are security professionals to make of all this? The general public seems split between two responses. Either theyre taking their panic in the direction of off-grid prepper bunkers away from the Internet and the coming collapse of civilization, or theyre pretending nothing is happening because its so scary and complex that they just cant think about it. Security professionals dont really have the option of doing either, so what is to be done?
Want to learn more about how LTE-A Pro and Gigabit LTE will impact the 5G market? Join us in San Francisco for
LTE Advanced Pro and Gigabit LTE: The Path to 5G event
-- a free breakfast collocated at Mobile World Congress Americas with a keynote address by Sprints COO Günther Ottendorfer.
I think the first thing to do is decide whether your organization is likely to be a direct target of nation-state attacks. To be honest, if youre in a business like critical infrastructure then youve already got plans in place to fend off and respond to the kind of hacks that take down power grids and financial systems. The real urgency comes for businesses that arent obvious targets. There are three levels of concern with a different set of responses for each.
Level 1: The critical infrastructure you depend upon is hit

So youre not a bank or an electric utility but you probably use the services of at least one of each, and your business would suffer if you couldnt use those services. How do you prepare? Redundancy is your friend. And remember, were not just talking about multiple paths into a single point of failure: While youre always going to have primary relationships in finance and other services, have secondary providers in place with as much geographical and logical space between primary and secondary as possible.
For the electric power grid, by the way, this means that your secondary is a generator with a lot of fuel and a careful maintenance plan. For internet access, its a second provider that uses a different upstream provider than your primary. And your secondary bank should be part of a different Federal Reserve region than your primary. When it comes to redundancy planning, paranoia is a virtue.
Level 2: Youre not a direct target, but you become collateral damage

Some cyber weapons are sniper-like in their precision. Others are more like shotguns or hand grenades. If the second type of weapon is in use, then your systems could be hit and damaged even if theyre not the primary target. To prepare yourself, make sure you have a solid backup and recovery plan and look carefully at business continuity services with a well-defined big red switch for moving your operation.
It should be noted that most of the big hacks take advantage of un-patched vulnerabilities that have existed for some time. In most cases, the vulnerabilities have been patched, but the victims have not applied the patches or updates. Your strategy: Patch and update as quickly as possible. If you have critical applications that depend on particular features of older operating systems, then have an emergency sandbox procedure in place to allow for rapid trial and updates. And for heavens sake, have your perimeter defenses in place and up to date. They really do matter.
Level 3: You become a direct target

Welcome to the big league! Youre going to be fending off a zombie horde with nothing more than your pluck and spunky determination, so hunker down and get ready. Assuming youve done everything mentioned in levels 1 and 2, then your call here is to partners: Your ISP, your CASB provider and your cloud partners. Let them know whats going on (though theyll likely know that
something
is wrong), and enlist their help in fighting it. Better yet, have plans in place to call on them and rehearse those plans a couple of times a year.
While its unlikely that youll escape completely unscathed if you find yourself a target, you can minimize the damage and keep the business afloat; you just have to plan for the worst and be willing to declare an emergency as early as possible. Dont let pride become the anchor that sinks you in a nation-state cyber storm.
— Curtis Franklin is the editor of
SecurityNow.com
. Follow him on Twitter
@kg4gwa
.

Last News

▸ ArcSight prepares for future at user conference post HP acquisition. ◂
Discovered: 07/01/2025
Category: security
▸ Samsung Epic 4G: First To Use Media Hub ◂
Discovered: 07/01/2025
Category: security
▸ Many third-party software fails security tests ◂
Discovered: 07/01/2025
Category: security


Cyber Security Categories
Google Dorks Database
 		Exploits Vulnerability
 		Exploit Shellcodes

CVE List
 		Tools/Apps
 		News/Aarticles

Phishing Database
 		Deepfake Detection
 		Trends/Statistics & Live Infos



Tags:
The New Nation-State Normal