ASPR TLP White Cybersecurity Notification: CISA Releases "Shields Up" Message Regarding Geopolitical Tensions

Advisory Details

Due to increasing geopolitical tensions, the Cybersecurity and Infrastructure Security Agency (CISA) has issued a “Shields Up” message to every U.S. organization, including Healthcare and Public Health (HPH) organizations.

Every organization in the United States is at risk from cyber threats that can disrupt essential services and potentially result in impacts to public safety. Over the past year, cyber incidents have impacted many companies, non-profits, and other organizations, large and small, across multiple sectors of the economy.

Notably, the Russian government has used cyber as a key component of their force projection over the last decade, including previously in Ukraine in the 2015 timeframe. The Russian government understands that disabling or destroying critical infrastructure—including power and communications—can augment pressure on a country’s government, military and population and accelerate their acceding to Russian objectives.

While there are not currently any specific credible threats to the U.S. homeland, CISA is mindful of the potential for the Russian government to consider escalating its destabilizing actions in ways that may impact others outside of Ukraine. 

CISA recommends all organizations—regardless of size—adopt a heightened posture when it comes to cybersecurity and protecting their most critical assets.

The advisory provides steps organizations can take immediately to ensure that:

• The likelihood of a damaging cyber intrusion is reduced
• A potential intrusion is quickly detected
• An organization is prepared to respond if an intrusion does occur, and;
• An organization has maximized their resilience in the face of a destructive cyber incident.

The entire advisory can be viewed at CISA.gov.


Additional Resources

• CISA Insights: Implement Cybersecurity Measures Now to Protect Against Potential Critical Threats  (pdf) (January 2022)
• Alert (AA22-011A) Understanding and Mitigating Russian State-Sponsored Cyber Threats to U.S. Critical Infrastructure (January 2022)
• CISA Insights: Preparing for and Mitigating Potential Cyber Threats (pdf) (December 2021)
• Reminder for Critical Infrastructure to Stay Vigilant Against Threats During Holidays and Weekends (November 2021)
• Russia Cyber Threat Overview and Advisories

Subscribe to HPH Sector Cyber Notifications

Did a colleague forward you this HPH Sector Cyber Notification? Receive these cyber notifications directly by subscribing to the HPH Sector bulletins. HPH Sector bulletins inform stakeholders about the most significant issues facing the sector including cybersecurity, medical supply chains, COVID-19, and more. If you are interested in receiving cyber notifications or other HPH Sector bulletins, visit the CIP bulletins subscription webpage.