Security Advisory: A risk-based approach for improving your cybersecurity posture due to the invasion of Ukraine

We want to provide organizations with recommendations to prepare for potential cyberattacks as a direct or indirect result of the current geopolitical crisis. 

As of the date of writing this security advisory, security incidents have been more subdued than initially feared. Reported security incidents are mostly distributed denial of service (DDoS) attacks. So far, we have not seen any verified reports of industrial control systems (ICS) breaches like the paralyzing power supply attacks in Ukraine in 2015 and 2016. 

This situation is still developing and it is important to stay informed and vigilant. We expect to provide updates to this post over time.


These are uncertain and difficult times. Although it may seem difficult to prepare for such a wide-ranging risk, you can take specific actions to proactively prepare your organization. Now is the time to review your current cybersecurity strategy, test your incident response plans and ensure you have your cybersecurity solutions configured to maximize prevention, detection and response.

Not everyone is facing the same risks, and we have organized our advisory into three different tiers of business and organizations depending on their relationship with Ukraine. However, all the recommendations below can and should be leveraged across all

Read More: