"CISA has reiterated that adversaries have already embedded themselves inside critical systems and telecommunications networks, positioning themselves to cripple the operational technology that keeps American society running should a wider geopolitical conflict erupt."
"At the heart of CI Fortify are two capabilities that operators are urged to begin developing immediately. The first, isolation, involves deliberately severing connections to outside networks and business systems to prevent an attack from spreading to OT."
"The second capability, recovery, focuses on what happens when isolation alone is not enough. Operators are advised to thoroughly document their systems, maintain up-to-date backups, and regularly rehearse restoring compromised components or switching to manual operations."
CISA has issued guidance highlighting the ongoing threats to US critical infrastructure from nation-state actors. These adversaries have infiltrated critical systems, posing risks to operational technology. In response, CISA launched CI Fortify to ensure essential services can operate during cyberattacks. The initiative emphasizes two key capabilities: isolation, which involves severing connections to prevent attack spread, and recovery, which focuses on system documentation and backup maintenance. Operators are urged to implement these strategies to sustain essential services during disruptions.
Read at SecurityWeek
Unable to calculate read time
Collection
[
|
...
]