In today’s world of everchanging technology, the fastest growing method of cyber-attacks is Ransomware. “Ransomware is a form of malware designed to encrypt files on a device, rendering any files and the systems that rely on them unusable, and malicious actors then demand ransom in exchange for decryption.” The U.S. Government recently launched a website to help educate organizations across all industries on how to best defend against the continuous increase in ransomware incidents.
The newly launched website (https://www.cisa.gov/stopransomware) is meant to be the U.S. Government's official one-stop location for resources to tackle ransomware more effectively. The website has resources that provide organizations further understanding of ransomware, phishing and disinformation with the goal of lessening the likelihood of a ransomware incident occurring. Included in the guidance on this website are references to recommendations for incident preparation, prevention, detection and response. Brief descriptions of the resources and tools provided are below:
- Ransomware Guide – A product released in September 2020 by the Cybersecurity and Infrastructure Security Agency (CISA) and Multi-State Information Sharing and Analysis Center (MS-ISAC) with the goal of informing and enhancing network defense and reducing exposure to a ransomware attack.
- CISA Insights – Description of three straightforward steps to be taken by any organization to manage the risk of a ransomware incident.
- Ransomware Fact Sheet – A fact sheet released by the National Cyber Investigative Joint Task Force (NCIJTF) that provides information on the Government’s response to the increase in ransomware incidents.
- Cybersecurity Video Series – A three-part video series released by CISA that provides education on how to protect, prevent, detect, and lessen the impact of a ransomware attack.
- Ransomware Protection and Response – Guidance and white papers on incident detection and response provided by the Computer Security Resource Center (CSRC) within the National Institute of Standards and Technology (NIST).
- A Guide to Ransomware – A guide provided by the U.S. Secret Service with the intention of providing organizations with actions they should take to prepare, prevent and respond.
Incident Preparation and Investigations – Guides provided by the Federal Bureau of Investigation (FBI) that is meant to prepare organizations for a potential FBI investigation following an attack, and an overview of what security professionals can expect during an FBI investigation.
For additional cybersecurity information, please reach out to our experts at FoxPointe Solutions today!
FoxPointe Solutions is solely responsible only for the content of FoxPointe Solutions authored information and is subject to change at any time. Any forward-looking statements are not predictions. FoxPointe Solutions is not responsible for any errors or omissions, or for the results obtained from the use of this information. Questions regarding your legal or compliance position should be addressed through your legal counsel, security advisor and/or your relevant standard authority. Nothing contained herein should be used nor relied upon as advice nor constitute a consultant-client relationship.