Intelligence agencies from five nations contributed to the new advisory…
An article review.
For the first time, the cybersecurity divisions of the nations in the “Five Eyes” alliance (The United States, United Kingdom, Canada, Australia and New Zealand) have released a joint advisory concerning incident response.
The report, available here, does not provide a complete incident response framework, however it does provide a starting point for groups whose programs are still in development.
Over the report’s 14 pages tips are given for identifying suspicious and/or malicious activity, steps to take if such activity is detected, common mistakes to ignore and ways to mitigate an attack. The report also provides general recommendations and best practices to prevent an attack, along with resources for further learning.
While the advisory may not contain much new information for organizations that have already implemented an incident response program, it does demonstrate a new level of cooperation between national cybersecurity agencies. By taking this step, the agencies involved are acknowledging the growing risk cybersecurity attacks pose to society, and that they are continuing to devote resources to combating them.
Original article by Dwight Weingarten, writing for MeriTalk.