Its really tough to watch what is happening in Ukraine right now and our thoughts are with the Ukrainian people.

Part of the Russian offensive is Cyber warfare and MSPs need to be aware this is not only limited to Nation state attacks on critical infrastructure in Ukraine or any of the countries sympathetic to them.

The chaotic state of affairs in the region will mean that rogue individuals and organised gangs will feel more empowered and have more freedom to carry out cyber attacks and this may be directed at local government, education and private companies in other countries.

Having reviewed many forums and threat intelligence, it does appear that this activity has not yet increased substantially and this may continue, but as ever we must hope for the best and plan for the worst.

There are many sources of free information on this subject and below are just a few examples that we recommend:

https://www.ncsc.gov.uk/guidance/actions-to-take-when-the-cyber-threat-is-heightened

https://forum.comptiaisao.org/forums/active-exploits-discussion-recommendations.82/

https://www.connectwise.com/resources/What-MSPs-Need-to-Know-regarding-Potential-Russian-CyberWarfare?_ga=2.75866966.216696790.1645807364-1733851609.1642159555&_gac=1.28275150.1644835948.Cj0KCQiAmKiQBhClARIsAKtSj-k8Y1s0cpsA1c7rqHmJVBJcqfrnhwMKebPHOJPt84scv426Pb3A93waAvHLEALw_wcB

https://www.cisa.gov/uscert/ncas/alerts/aa22-047a

https://www.sans.org/blog/ukraine-russia-conflict-cyber-resource-center/

Our advice to MSPs remains the same as it has for the past 4 years:

Do the cyber security basics well and consistently, this is your best defence against any sort of cyber attack from whatever threat actor.

If you need any help with putting these processes in place in your MSP or your clients, just get in contact, we deal with many MSPs across the UK and Europe and are here to help