NIST Publishes Updated Guidelines for Ransomware Defense

In light of the recent rise in ransomware attacks, The National Institute of Standards and Technology (NIST) has developed new, preliminary draft guidelines for organizations regarding ransomware attacks.

These guidelines, titled “The Cybersecurity Framework Profile for Ransomware Risk Management,” spotlight suggestions for defense against the malware as well as how to handle these incidents when attacked, recovery from an attack and future prevention.

What You Need to Know About the Draft NIST Guidelines 

The goal of NIST is to use these guidelines along with the NIST Cybersecurity Framework, as well as other guidance documents published by agencies such as the Department of Homeland Security and the Federal Bureau of Investigation to combat ransomware.

These revised guidelines can be used by organizations along with the NIST Cybersecurity Framework for better detection and prevention practices and can aid in implementing and developing an overarching cybersecurity and risk management strategy when dealing with ransomware attacks.

Users will be shown effective prevention methods in dealing with ransomware attacks as well as how to manage and prioritize risks. This guidance includes many suggestions to take the first step towards protection including using proper antivirus programs and strictly limiting access sites with ties to ransomware attacks.

Other suggested measures include:

  • Scan all incoming emails and external drives.
  • Limit the use of employee personal devices.
  • Restricting the use of personal apps within the personal devices.
  • Implementing awareness training to educate employees about the potential risks that come with opening files sent from an unreliable source.

NIST says using the guidance to help plan ahead and develop an overarching cybersecurity strategy will help organizations in preventing ransomware attacks, as well as faster recovery from said attacks. It is suggested that companies construct an incident defense plan, develop a backup strategy and keep an updated list of internal and external ransomware attack response contacts.

A Trusted Cybersecurity Partner 

DMI combines the full spectrum of cybersecurity skills needed to help you identify and plan your security strategy to address risk today and implement the right systems and processes tomorrow. We stay up-to-date on the latest guidelines, so we can help you find the right technology solutions to address your business needs. 

Contact DMI today and let us show you how optimizing your existing cybersecurity can reduce your risk and protect your business.

New call-to-action

Back to Blog
l

Related Content

The Criticality of Cybersecurity Integration

For many businesses, cybersecurity is an abstraction that exists in the virtual world. Visualizing...

Defending Against Industrial Control System (ICS) Cybersecurity Threats Part II: Prevention

As previously discussed, detection is one part of defending against cyber threats within industrial...