Security Providers On High Alert, Warn Of Possible Cyberattacks

In the wake of the Sept. 11 terrorist attacks on New York and Washington, some security solution providers are advising clients to take precautions against possible cyberattacks.

PRECAUTIONS: Security Firm RedSiren Recommends • Reduce access by eiminating non-essential Internet services.  • Review existing security policies.  • Review firewall configuration-make sure access is tightly managed.

Last week, the Nimda worm swept through the Internet, slowing systems and causing congestion. By press time, however, initial speculation that the worm was connected to the attacks remained unproven, and U.S. Attorney General John Ashcroft said there was no evidence of such a link. Still, security solution providers remain on high alert.

"[After the terrorist attacks] we sent an e-mail to our customers telling [them] that because of the nature of the attacks, our expectation is that either immediately or in the near term it's reasonable to expect we'd see cyberattacks too," said Helen Jones, operations director at RedSiren Technologies, a Pittsburgh-based managed security services provider. The firm is advising customers to reduce Internet access by turning off all nonessential services such as instant messaging, mail lists or remote-access connections.

The FBI's Counterterrorism Division issued an advisory about the threat of terrorist attacks: "Infrastructure owners and operators should be at a heightened state of alert and should implement appropriate security measures,both physical and cyber."

In response, RedSiren issued a cybersecurity checklist with 11 recommendations for companies to consider. The advisory remains in effect until Oct. 11.

RedSiren is a member of InfraGard, a partnership between private industry and the federal government aimed at protecting critical information systems. Immediately after the Sept. 11 attacks, RedSiren provided additional support to a client with a branch office in the World Trade Center area and extra support to other clients in the financial, utility and telecommunications industries, Jones said.

Jeff Schmidt, president and founder of Secure Interiors, a Columbus, Ohio-based managed security provider, warned criminals could take advantage of people's emotional distraction over the tragedy. "It's critically important that we remain vigilant in other aspects of security," said Schmidt, a member of InfraGard's National Executive Board. "Nothing says there couldn't be more waves of these attacks. Nothing says these have to be physical."

Schmidt recommended that companies shut off nonessential Internet services and take steps to protect their networks. "Any war in the future would include an electronic component," he said.

Patrick Sweeney, president of managed security services provider ServerVault, Dulles, Va., said in a statement that Tuesday's tragic events underscored the need for "the highest security measures in our government's network operations. As a country, we cannot afford to ignore the likelihood of follow-up or focused attacks on government networks."

And Bruce Murphy, CEO of Vigilinx, a security services firm in Parsippany, N.J., said the company is keeping an eye out for follow-on cyberattacks but that he doesn't expect terrorists to take to the Web. Tuesday's attacks "were egregious enough," he said.