The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) have released an updated guide to help critical infrastructure organizations prevent and respond to ransomware attacks. The guide includes best practices and a checklist for organizations to follow. The guide recommends that organizations implement strong cybersecurity measures, have a plan in place to respond to a ransomware attack, and report ransomware attacks to CISA and the FBI.
The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) have co-authored a new handbook that offers critical infrastructure businesses’ best practices and a checklist for preventing and responding to ransomware attacks.
The guide, titled “Ransomware Guide for Critical Infrastructure Organizations,” includes recommendations for organizations to implement before, during, and after a ransomware attack. Some of the key recommendations include:
- Implementing strong cybersecurity measures, such as multi-factor authentication and data encryption, makes it more difficult for attackers to gain access to systems and data.
- Having a plan in place to respond to a ransomware attack, including having a backup of data that can be restored if systems are encrypted.
- Reporting ransomware attacks to law enforcement, as this can help to disrupt the activities of ransomware gangs.
The guide also includes contact information for CISA and the FBI, as well as other resources that organizations can use to learn more about ransomware and how to protect themselves.
John Riggi, AHA’s national advisor for cybersecurity and risk, said the guide is “an essential tool for all cybersecurity professionals in health care and all critical infrastructure sectors.” He added that the guide is “based upon the government’s latest cyber investigative and intelligence information, including sensitive classified holdings,” and that it “contains specific actionable recommendations to help organizations prevent, prepare for, and recover from a ransomware attack.”
Here are some additional tips for preventing ransomware attacks:
- Keep your software up to date. Software updates often include security patches that can help protect you from ransomware attacks.
- Be careful about what emails you open and what links you click on. Ransomware attacks often start with an infected email or malicious link.
- Use a firewall and antivirus software. A firewall can help block unauthorized access to your computer, and antivirus software can help detect and remove ransomware.
- Back up your data regularly. If your computer is infected with ransomware, you can restore your data from your backups.
By following these tips, you can help protect yourself from ransomware attacks.