Response to the Situation in Ukraine 

Our thoughts are with everyone impacted by this unfolding situation. Our priority is to keep you, our customers, safe. With this in mind, we strongly recommend that you review your cyber security related to your infrastructure and secure your systems, including your Mimecast solutions.  We are also sharing the latest guidance from international cybersecurity agencies to help you stay prepared. We have been tracking the conflict in Ukraine and evaluating our defensive and reactive posture against the guidance issued by international cybersecurity agencies and continue to do so. Our internal Adversary Simulation Teams continuously evaluate and test our resilience to likely scenarios that might affect the continuity of our services or the confidentiality and integrity of our customers' data. 

 At Mimecast, we treat security with the utmost importance. Visit the Mimecast Community KnowledgeBase for a set of best practices, providing recommendations to enhance your account's security including:

• Managing user access, permissions, and restrictions
• Communication in and out of your environment

In addition to these community resources, Mimecast’s strategic partners are monitoring the situation in Ukraine and are offering guidance for hardening security postures:

• Rapid7, Prudent Cybersecurity Preparation for the Potential Russia-Ukraine Conflict
• Mandiant, Anticipating and Preparing for Russian Cyber Activity
• Palo Alto Networks, Russia-Ukraine Crisis: How to Protect Against the Cyber Impact

We also recommend you consider the advice below: 

• UK NCSC – Actions to take when the cyber threat is heightened. 
• CISA/FBI/NSA – Understanding and mitigating Russian state-sponsored cyber threats to U.S. critical infrastructure. 
• CISA – CISA urges organizations to implement immediate cybersecurity measures to protect against potential threats. 
• ACSC – Australian organizations encouraged to urgently adopt an enhanced cybersecurity posture.  

Mimecast continues to track threats 

In collaboration with our strategic threat intelligence partners, we are closely monitoring the increased cyberattacks, which thus far have been directed at Ukraine targets.  The attacks appear to incorporate suspected malware and DDOS against the Ukrainian infrastructure.  

(Please note – this is an evolving situation, and we continue to closely monitor) 

Reference: https://www.sentinelone.com/labs/hermetic-wiper-ukraine-under-attack/?_hsmi=204946777&_hsenc=p2ANqtz--doZgpdrGJX3SG5TBXSuqI8uAWwb5C9Gl1BEI03r0MPuPmJ0U2-FToWy1gn5pUO1jvU4NoRLRoAgoHgnj9_IVsM6qLWA