Cyber-Attack Preparedness Activities
The Bottom Line:
- Keeping our systems safe
- Protecting data from theft, destruction
- Making sure systems can’t be disabled
- Keeping our systems from being used to attack others
- Protect ourselves from liability
- Responsibility to ensure the safety of Internet/campus neighbors
University (Campus) Activities:
-
Increased monitoring of Internet activity
-
Increased computer security vulnerability scanning
-
Reviewing and updating processes for notifying law enforcement or other government agencies in the event of an attack
-
Computer risk assessment and environmental inventory activities (interviews)
-
Reviewing physical security procedures
-
Reviewing department contact information and notification procedures
-
Reviewing continuity and recovery procedures
What you should do:
-
Make sure you have current backups of your data.
-
Regularly update all computers with current security patches. (Visit the web sites for your operating system and programs to look for updates, and use the built-in “Windows Update” function on Windows computers.)
-
Make sure anti-virus is installed, definitions are updated daily, all incoming files are scanned, and the whole disk drive(s) is scanned weekly.
-
Be on heightened alert. Monitor your systems. (Review event and system logs for suspicious activity.)
-
Report problems to the IT Security Office (security@uiowa.edu or 335-6332) immediately.
-
Review recovery procedures for your systems before you have a problem. Be prepared with recovery/boot disks for your computers. Know who to call if you need help.
-
Review who has access to your computer system(s) and make changes if its out of date.
Information Sources:
SANS Institute www.sans.org
Security Focus www.securityfocus.com
Center for Internet Security www.cisecurity.org
CERT Coordination Center www.cert.org
Updated 4/2/2003.