Government Encourages Application Whitelisting to Boost Security
On March 15, 2018 the U.S. government made a statement confirming the U.S. power grid had been compromised by the Russians. Unsettling news, to say the least. Although, various news outlets have reported no damage was done, and they believe the primary goal was to send a message. It appears this was a Russian power tactic. Russia wanted the U.S. government to know, if they wanted to do significant damage to our power grid, they could.
Now, the United States Computer Emergency Readiness Team (US-CERT) has encouraged government agencies, as well as businesses to implement application whitelisting technology to avoid falling victim to similar attacks. By utilizing an application whitelist, only known safe programs are able to execute. This method of malware defense has been proven to be far more effective in blocking malware infections than alternative approaches.
Along with whitelisting, IT professionals should be ensuring all third-party applications, programs, and operating systems are updated. Often times hackers exploit known vulnerabilities that are left unpatched by outdated systems. Therefore, by ensuring these updates take place in a timely manner, systems will remain increasingly secure.
For more cyber security tips from the US-CERT, click here.