The National Institute of Standards and Technology, renowned shortly as NIST has published some ransomware guidelines that need to be followed by organizations that are concerned about ransomware attacks.
NIST’s objective in offering such guidelines is to help the IT staff of firms to learn how to prevent ransomware attacks on their networks and mitigate the risks with greater efficacy.
As of now, the freshly drafted guidelines are available as an abstract for companies that already adopted the NIST framework and wish to improve their cyber risk posture on a further note. And those are-
1.) Deploying required patch-ups to all operating systems on the computer network and installing anti-malware and threat monitoring solutions that block access to malware attacks such as ransomware, thus allowing only authorized apps to operate.
2.) Auto scanning all emails and flash drives that are being used and limit access to those accounts that aren’t having admin privileges.
3.) Creating awareness among employees on what is going on in the cyber landscape and dangers in opening files that are sent by anonymous senders.
4.) Ensuring that a data continuity plan is drafted, tested, and implemented in the corporate environment to help victims recover faster when any untoward cyber incident takes place.
Note- By July 9th this year anyone who has any kind of apprehensions about the newly drafted ransomware profile can send their feedback to the National Institute of Standards and Technology aka NIST. And if the committee approves such comments as required amendments, then a secondary drafted copy will be released before the final of September 11th,2021.
