IE11 Not Supported

For optimal browsing, we recommend Chrome, Firefox or Safari browsers.

Proactive Preparation and Hardening to Protect Against Destructive Attacks

In light of the crisis in Ukraine, Mandiant is preparing for Russian actors to carry out aggressive cyber activity against our customers and community. Russia regularly uses its cyber capability to carry out intelligence collection and information operations, but we are particularly concerned that as tensions escalate, they may target organizations within and outside of Ukraine with disruptive and destructive cyber attacks.

Threat actors leverage destructive malware to destroy data, eliminate evidence of malicious activity, or manipulate systems in a way that renders them inoperable. Destructive cyber attacks can be a powerful means to achieve strategic or tactical objectives; however, the risk of reprisal is likely to limit the frequency of use to very select incidents. Destructive cyber attacks can include destructive malware, wipers, or modified ransomware.

Our latest white paper, Proactive Preparation and Hardening to Protect Against Destructive Attacks, provides hardening and detection guidance to protect against a destructive attack within an environment. The focus areas outlined within this white paper include:

  • Identification, authentication best-practices, and detection opportunities for external-facing applications and services
  • Critical asset protections and detection opportunities – including:
    • Recovery and reconstitution planning
    • Segmentation between IT and OT environments
    • Egress restrictions
    • Protections for virtualization infrastructure
  • On-premises lateral movement techniques, protections, and detection opportunities
  • Credential protections and detection opportunities

The recommendations and guidance include practical and scalable methods that can help protect organizations from not only destructive attacks, but potential incidents where a threat actor is attempting to perform reconnaissance, escalate privileges, laterally move, maintain access, and achieve their mission.

Download the white paper today!

We also discussed this topic in greater depth in a special webinar on January 20th. Please register to view this on-demand webinar.
Since 2004, Mandiant has been a trusted partner to security-conscious organizations. Effective security is based on the right combination of expertise, intelligence, and adaptive technology, and the Mandiant Advantage SaaS platform scales decades of frontline experience and industry-leading threat intelligence to deliver a range of dynamic cyber defense solutions. Mandiant’s approach helps organizations develop more effective and efficient cyber security programs and instills confidence in their readiness to defend against and respond to cyber threats.