How Likely Is A Russian Cyber Attack– And What Can I Do To Protect Myself?

With tensions between Russia and the wider world continuing to escalate, UK intelligence services, and the FBI and US Department of Homeland Security earlier this week issued a joint warning about a massive cyber campaign by Russian-backed hackers.

It’s clear that government organisations and entities like the NHS are prime targets of this campaign to try and intercept sensitive information, but what could this warning mean for us as individuals? Are we at risk and if so is there anything we can do to protect ourselves?

We spoke to John Shaw, VP Product Management at cybersecurity firm Sophos, about these issues.

What form could an attack take?

Developed nations (including the UK) are engaged in some level of cyber surveillance, explains Shaw. This surveillance isn’t designed to “attack” anyone or anything, instead it’s there to spy on sensitive communications. Generally it goes unnoticed.

Actually defining what an attack might look like is difficult, but Shaw believes there are some definite possibilities. The first is what’s known as a “phishing” attack, which would be aimed at key employees of either government agencies or some of the country’s largest organisations such as BAE or the NHS.

They would be sent messages “looking like they are from a trusted party and persuading the employee to either click on a link to trigger an ‘exploit’, Shaw says, or to hand over a username and password. Either way, the attackers will be aiming to grab control of the exec’s computer, and would then use that as a springboard to gain access to critical systems, and then disrupt or break them.

A 'phishing' scam can look as simple as a WhatsApp message or an email.

The second possibility is something called a “spray and pray” technique which Shaw describes as, “hitting as many computers as possible in the hope that one or more of them will have access to systems that can cause damage if disrupted.”

To be highly effective, this approach would require a mechanism for attackers to spread quickly. “This could involve hacking a popular website or a concerted effort on social media to get UK users to click infected links.” Shaw explains.

“From recent experience it could be likely that the attacks will use exploits against legitimate software that have not been declared publicly – meaning that even those of us who are diligent and always update our software and systems could be vulnerable to the attack.”

How prepared is the UK infrastructure / UK businesses?

“GCHQ and other government institutions spend huge amounts of time and resources on defending critical national infrastructure from cyber attack,” explains Shaw.

Despite this, he believes that state-sponsored attacks are just one part of a wider problem the UK faces. The larger threat could be from what’s known as commercial cybercrime. 

Either way, there are some techniques that businesses should use to keep themselves and their employees safe. This could range from updating software and systems regularly, to using what Shaw describes as “next gen” firewalls to protect employees machinery against remote attacks by hackers.

Giving staff training and making sure they are aware of the dangers is also incredibly important, along with the basic requirement that all staff should probably be using a password manager. 

“Password re-use is a common route in to business systems”, explains Shaw.

Finally and last but not least he warns that for too long the public perception has been that only Windows computers are really at risk of attack. “Don’t forget that smartphones, tablets and many of the connected devices in your businesses are also powerful computers – don’t just concentrate on Windows PCs.” he says.

How it could affect us as individuals?

For the vast majority of us, a Russian cyber attack is unlikely to directly affect our lives unless it’s through a third-party incident e.g. the disruption of the computer systems at a train station or the hacking of the NHS.

The biggest risk for the public, explains Shaw, is the “spray and pray” attacks that Russia favours above all else. To protect ourselves against these attacks there are key techniques we should be employing every day.

1. Always update your software, whether it’s on your smartphone or computer. Don’t leave it for a few weeks or because you can’t be bothered.

2. Install anti-virus software and make sure it’s protecting your entire home. Ensure that your ISP also provides some form of web protection through your WiFi router.

3. Always double-check emails you don’t recognise or that look unfamiliar. Even if it looks like it’s from a friend or company you trust it could contain a malicious link that would render your computer useless.

4. Use a password manager.

The Best Password Managers

Dashlane

Dashlane is in many ways the gold-standard of password managers. It’s free to use on a single device and comes with a dizzying array of features. Not only will it generate powerful passwords for you, but it’ll automatically save them when you create a new online account. Finally it’ll store your credit card information and any secure notes you want kept safe. It’s compatible with Touch ID, Face ID and fingerprint readers on Android smartphones.
Price: Free (1 device)/$39.99 per year (unlimited devices)

Dashlane

1Password

1Password is for those that use lots of devices across lots of different operating systems. It will work with literally anything. It offers many of the same options as Dashlane but also boasts an array of browser plug-ins that will let you access your passwords through Chrome, Safari or Firefox and log in automatically. No it’s not free but its basic package is cheaper than Dashlane and supports one account on all your devices. It too supports fingerprint and Face ID logins.
Price: $2.99 per month (Unlimited devices)

1Password

Keeper Security

Keeper might not look as swanky as the others but it’s by far and away the best one for business users. It lets you record your previous passwords and see when any and all changes have been made to the account. Finally, Keeper also supports physical security keys letting you add another layer of protection in addition to your master password and fingerprint sensor.
Price: £20.99 per year (unlimited devices)

Keeper Security

LastPass

Finally, there’s LastPass. Looking like Netflix for your cybersecurity this free password manager has the simplest layout and offers solid basic password management if you’re after a no-frills approach. LastPass offers by far the best value of all three giving you free access to the apps basic password storage on an unlimited number of devices. It then offers a premium category if you’re looking to add secure file storage or the ability to use physical security keys.
Price: Free (Unlimited devices)/$2 per month 

LastPass