Overview
On Monday, January 6, 2020, the U.S. Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) released Alert AA20-006A, warning about potential cyberattacks on U.S. companies by the nation of Iran.
The alert includes an overview of the threat profile of Iranian state-sponsored offensive cyber activities, tactics used by Iranian Advanced Persistent Threats mapped into the MITRE ATT&CK framework, and recommended mitigations.
The alert can be found here: https://www.us-cert.gov/ncas/alerts/aa20-006a.
Assura’s Take
Read the alert and follow the advice contained therein. Ensure that monitoring systems and incident response teams are ready to detect and respond to the tactics and techniques used by this and other cyber threats.
If you’re an Assura Virtual ISO™ client, feel free to seek additional guidance from your VISO. If you’re an Assura Managed SOC client, our SOC is on heightened alert for these threats.
Alternatively, if you have any questions or need guidance, please feel free to contact us through our web site at https://www.assurainc.com.