- Added recommendations for preventing common initial infection vectors, including compromised credentials and advanced forms of social engineering
- Updated recommendations to address cloud backups and zero trust architecture (ZTA)
- Expanded the ransomware response checklist with threat hunting tips for detection and analysis, and
- Mapped recommendations to CISA’s Cross-Sector Cybersecurity Performance Goals (CPGs).
#StopRansomware: New Guide From The U.S. National Security Agency
As part of a focused campaign on curbing cyberattacks, the U.S. National Security Agency (NSA) has developed updated guidance for organizations.
The #StopRansomware Guide Cybersecurity Information Sheet (CSI) was initially introduced in 2020 based on the FBI and CISA’s advisories for network defenders. Since then, ransomware threat actors have stepped up their tactics and techniques, and the NSA is encouraging cyber resilience professionals to do the same with updates to its prevention best practices and a checklist for ransomware and data extortion response.
Among the updates, this CSI: