NCCoE preliminary draft report on ransomware risk management

NCCoE preliminary draft report on ransomware risk management

adminJune 14, 20213min410
adminJune 14, 20213min410
ransomware.jpg
Credit: CC0 Public Domain The National Cybersecurity Center of Excellence (NCCoE) has released a new preliminary draft report, National Institute of Standards and Technology (NIST) Interagency or Internal Report (NISTIR) 8374, Cybersecurity Framework Profile for Ransomware Risk Management. Ransomware is a type of malicious attack where attackers encrypt an organization’s data and demand payment to […]


Credit: CC0 Public Domain

The National Cybersecurity Center of Excellence (NCCoE) has released a new preliminary draft report, National Institute of Standards and Technology (NIST) Interagency or Internal Report (NISTIR) 8374, Cybersecurity Framework Profile for Ransomware Risk Management.

Ransomware is a type of malicious attack where attackers encrypt an organization’s data and demand payment to restore access. In some instances, attackers may also steal an organization’s information and demand an additional payment in return for not disclosing the information to authorities, competitors, or the public. Ransomware can disrupt or halt organizations’ operations.

This report defines a Ransomware Profile, which identifies security objectives from the NIST Cybersecurity Framework that support preventing, responding to, and recovering from ransomware events. The profile can be used as a guide to managing the risk of ransomware events. That includes helping gauge an organization’s level of readiness to mitigate ransomware threats and to react to the potential impact of events.


Some hackers take the ransom and run: researchers


Provided by
National Institute of Standards and Technology

Citation:
NCCoE preliminary draft report on ransomware risk management (2021, June 10)
retrieved 14 June 2021
from https://techxplore.com/news/2021-06-nccoe-preliminary-ransomware.html

This document is subject to copyright. Apart from any fair dealing for the purpose of private study or research, no
part may be reproduced without the written permission. The content is provided for information purposes only.





Source link

Share it

Leave a Reply

Your email address will not be published. Required fields are marked *