- Review Incident Response Plans: Ensure your organization's incident response plan is up to date, tested, and understood by all relevant personnel. Confirm communication channels with internal and external stakeholders (e.g., law enforcement, NJCCIC).
- Enhance Network Monitoring: Increase vigilance over network traffic for anomalous behavior, unusual login attempts, and suspicious activity, especially on critical systems and external-facing assets.
- Patch and Update Systems: Immediately apply all critical security patches and updates to operating systems, software, and firmware, prioritizing internet-facing systems and those within critical infrastructure.
- Strengthen Authentication: Enforce Multi-Factor Authentication (MFA) for all accounts, particularly those for remote access, privileged accounts, and critical business applications. Review and tighten access controls, adhering to the principle of least privilege.
- External Connectivity: Scrutinize and secure all external connections to your network. Disable or restrict access to unnecessary services, ports, and protocols.
- Back up Critical Data: Ensure all critical data is regularly backed up offline or in a segregated environment and that recovery procedures are tested.
- Conduct Employee Awareness Training: Remind employees about the heightened risk of phishing, social engineering, and misinformation campaigns. Emphasize vigilance against suspicious emails, links, and attachments.
