The Cybersecurity and Infrastructure Security Agency (CISA) encourages administrators to review the NCSC report and the following CISA resources for more information on improving cybersecurity posture:
Avoiding Social Engineering and Phishing Attacks
Securing Network Infrastructure Devices
APTs Targeting IT Service Provider Customers
Microsoft Office 365 Security…
You can read the full article here.