Home

What do you think of organizations’ responses to the potential for cyber threats due to the Russia-Ukraine conflict?

When the Russia-Ukraine conflict came to a head earlier this year, our company offered small and medium enterprises our product for free, to help with the impact. We made the offer via LinkedIn and got upwards of 1,600 views within 24 hours, but nobody responded. I'm not sure why, but the early feedback I received from several peers was that the offer hadn’t moved the needle for them because this conflict was seen as a formidable global opponent, which has been found to be not worth the effort. The estimates were overblown and there hasn’t been much impact. A lot of the nation-state teams that I read from continue to predict that we have yet to see the best of what’s to come. So my question is: What's the benefit of holding back your punch? I sense that there is another piece that has yet to fall into place. We're only seeing the early steps towards something. 

Anonymous Author
When the Russia-Ukraine conflict came to a head earlier this year, our company offered small and medium enterprises our product for free, to help with the impact. We made the offer via LinkedIn and got upwards of 1,600 views within 24 hours, but nobody responded. I'm not sure why, but the early feedback I received from several peers was that the offer hadn’t moved the needle for them because this conflict was seen as a formidable global opponent, which has been found to be not worth the effort. The estimates were overblown and there hasn’t been much impact. A lot of the nation-state teams that I read from continue to predict that we have yet to see the best of what’s to come. So my question is: What's the benefit of holding back your punch? I sense that there is another piece that has yet to fall into place. We're only seeing the early steps towards something. 
0 upvotes
Anonymous Author
Very high. Of late my infosec (and my colleagues confided in our informal meeting as well) - there has been significant increase in unintended traffic. We are on enhanced surveillance and we have shut our non essential servers, hardened, closed SSH connections, deleted old keys, upgraded infrastructure where needed and closed open links of Work from Home. I believe that no one had excuse for not being prepared so far. War is well over 100 days and in all likelihood continue for some time. Not being prepared for this event is just being lethargic in my views. As a best practice I would advice all in flight or digitization initiatives to guard against seed behavior during implementation
0 upvotes
Anonymous Author
Our organization is focused on project management excellence from a governance standpoint.  We have developed a software to monitor a project from a 360 perspective.  We have implemented a whole module centered around any threat that the Russia-Ukraine conflict poses, including business interruption and cyber-threats. We are also looking at after identifying these risks to projects, how to mitigate them.  We are in the beginning stage of this effort and are working with several customers in the Ukraine to help us. 
0 upvotes
Anonymous Author
It is a reality that the number of attack vectors have gone up in the last 3+ months. In my observation, CISOs acknowledge the increased challenge and are taking steps to mitigate the additional threats. Off course many organizations believe that there is no change just because they cannot see it visibly. I have been having dialogues with some of the enterprises to stay alert and increase the monitoring diligence with incremental staff or tools. I think every enterprise needs to define "acceptable risk" and plan for mediation. Not doing anything is a bad idea.
0 upvotes
Anonymous Author
Clearly, the risks associated with potential cyber attacks have increased significantly, so heightened level of alert is warranted. All detected abnormalities are being carefully investigated and followed up on.
0 upvotes
Anonymous Author
I think it varies by organization.  Some industries are more susceptible and prone to larger threats than others.  Either way I think the due diligence and proactivity of certain companies have prepared them for the potential threats.  Generally they are the companies that have invested heavily in overall risk management and security regardless of what is going on around the world.  
0 upvotes