This Cybersecurity and Infrastructure Security Agency (CISA) advisory included specific recommendations to address some of the most common but effective tactics used by hostile actors to gain initial access to targeted networks (i.e., owner/operators of hazardous liquid and natural gas pipelines). These hostile tactics include spearphishing, brute force, and exploiting known vulnerabilities against accounts and networks with weak security.

This document contains four recommended measures for action. First, the designation of a primary and alternate corporate security manager. Second, the reporting of cybersecurity incidents to the CISA. Third, the development and implementation of a Cybersecurity Incident Response Plan to reduce the risk of operational disruption in the event that Information Technology and/or Operational Technology systems are affected by a cybersecurity incident.

The appendix contains a list of resources to assist pipeline operators in implementing these recommendations.