A1 Cyber Defence Center Detects Major Botnet Threat and Gives Tips to Protect Belarusian Networks | News | About company

A1 Cyber Defence Center Detects Major Botnet Threat and Gives Tips to Protect Belarusian Networks

About Company

A1 Cyber Defence Center has identified more than 1,000 devices, which might be used by cyber criminals to launch attacks on Belarusian and international websites. The owners of respective IP addresses received recommendations on how eliminate the existing vulnerabilities.

 

Following its routine audit check, A1 sent a report on detected threats to the National Cyber Defence Center under the Presidential Center for Operations and Analysis. According to A1 experts, information on the existing vulnerabilities may be useful for the networks of other Internet providers as well. With that said, A1 issued the following recommendations on how to protect your devices. Users of Wi-Fi routers should be particularly watchful.

 

1. Restrict access to internal services from external IP addresses

If a service is only used within the network, it should not be seen from the Internet. Check your network settings and block external access where it's not needed. By doing this, you will make life harder for cyber criminals.

 

2. If possible, restrict remote access to trusted IP addresses only

Remote access to the admin panel of your PC, laptop, gaming console or desktop, which is open to the external network, acts as an invitation for cyber criminals. If you can't block remote access completely, set up a list of trusted IPs and disable access to unknown IPs.

 

3. Use non-standard ports.

Changing the default port can also help against cyber scanning and attacks. For instance, you can change the SSH port from 22 to any other port number. That will make things harder for those who will attempt to crack your password by trying random combinations.

 

4. Stop using default SNMP community strings (public, private)

SNMP (Simple Network Management Protocol) for monitoring network devices is often used with default "public" and "private" values. If these settings become known to attackers, they will gain information on your device. Be sure to change the default SNMP strings to strong and unique passwords.

 

5. Disable unused ports and services

The fewer open doors your network has, the better. Figure out which ports and services you absolutely need for work. Disable the rest. That will reduce the number of potential entry points for attackers.

 

6. Change default user passwords and get rid of accounts that you don't use.

Factory default settings, such as admin/admin, are among the most common vulnerabilities used by cyber criminals. The first and foremost thing to do is to replace default combinations (login/password) with strong and unique passwords. Alternatively, you can disable default admin accounts altogether. In addition, check for and remove inactive admin accounts.

 

7. Update your device's software on a regular basis

Firmware, operating systems, and applications are constantly improving as developers are fixing bugs and security holes. Make the habit of regularly updating all your devices with external IPs. This is a secure protection against common vulnerabilities.

 

8. In case of questions, contact technical support

If you're not sure whether you got the settings right, don't hesitate to contact your provider for technical support.

 

A1 Cyber Defence Center offers a full spectrum of services for ensuring cyber security and responding to cyber incidents:

  1. 24/7 monitoring and responding to IT events. A1 experts detect and analyze threats, as well as take steps to prevent them or minimize their effects on a 24/7 basis.
  2. Security assessment of information infrastructure objects. A1 professionals analyze information systems and perform their security testing, detect potential vulnerabilities, and implement proactive defense. 
  3. Investigation of cyber incidents. In case of a cyber attack, A1 determines what caused it and helps eliminate the effects and prevent its repeated occurrence.
  4. Professional consultations and expertise. Customers can benefit from cyber security consultations by certified specialists.

 

In providing its services, A1 Cyber Defence Center relies on its own Tier III data center, one of the largest and most advanced in the country. Reliable infrastructure and high work standards guarantee a high level of security for all customers.