Security Update: Ukraine, Cybersecurity & Recommended Actions for Nonprofit Organizations
This email was sent to our contact list on February 26th. Please add your name to our contact list to receive timely communication from Sightline Security.
We hope this email finds you well and would love to catch up with you soon. However, the reason we are reaching out is to address some concerning events in the news this past week.
You may have seen some of the alarming headlines coming from the situation in Ukraine, specifically warnings considering the potential for cyber attacks.
Many of our members have reached out to Sightline for some guidance we thought it best to send a quick note to everyone.
First, let me assure you, Sightline is keeping a very close eye on this situation and reports coming out of the security industry and from our connections at the Cybersecurity and Infrastructure Security Agency (CISA - https://www.cisa.gov/).
What we know right now -
Because of growing threats around the world, the CISA and security companies are recommending organizations take measures to ensure critical data and business operations are protected.
What should you do as a nonprofit?
Know your data -> Map data across your organization and the systems where your data is held., specifically information vital to your operations and mission.
Email caution -> Remind your team to be very vigilant on what email they open, click, and forward, including for support for Ukraine or other groups possibly posing as legitimate support agencies or organizations. If there is no certainty about the email address that sent it, do not open it. This tactic, known as 'phishing,' is a critical entry point to guard.
Identify what's vital to your mission and take steps towards protecting it -> Ask your board of directors, "Are we ready to handle a cyber incident that will shut down our operations? Even at a smaller scale? Do we have a response plan in place?"
Backup vital systems -> Ensure backup systems, procedures, and policies are in place to aid if an incident affecting operations should occur.
Sightline is here for you, so please reach out with any questions or concerns. Also, we hope you will forward this email to other nonprofits in your community. Let’s keep each other informed.
Are nonprofits more or less at risk of cyberattacks? https://sightlinesecurity.org/blog/2022/2/10/three-information-security-things-to-do-now-to-prevent-a-nonprofit-operations-shutdown
Sightline Security is a 501(c)(3) here to equip and empower mission-based and nonprofit organizations to integrate cybersecurity with confidence. Please reach out to us if we can help you put together an effective cybersecurity plan.