To address a “serious and increasing” threat, the Cybersecurity and Infrastructure Security Agency has published Protecting Sensitive and Personal Information from Ransomware-Caused Data Breaches. This guidance recommends maintaining offline and encrypted backups that are regularly tested, and developing a cyber response plan. To shore up defenses, CISA suggests closing internet-facing vulnerabilities, tougher spam filters and user training against phishing, and general cyber hygiene measures such as multifactor authentication, antivirus software, and limited use of privileged accounts. Data should be inventoried, physically protected, and encrypted at all times, and kept at a distance from the internet.
Sources:
- Nextgov: CISA Offers Tips to Protect Data in Face of Evolving Ransomware Attacks
- Softpedia: CISA Issues Ransomware Defense and Response Guidance