"CISA Shares Guidance on How to Prevent Ransomware Data Breaches"

The U.S. Homeland Security Department's Cybersecurity and Infrastructure Security Agency (CISA) has shared guidance on how government and private sector organizations could prevent data breaches caused by ransomware attacks. CISA's guidance covers best practices for preventing ransomware attacks and protecting sensitive and personal information from being exfiltrated by the malicious actors behind these attacks. CISA recommends that organizations use firewalls, implement network segmentation, and more to prevent ransomware gangs from gaining access to sensitive or personal information belonging to customers or employees. In addition to the advice on preventing ransomware attacks, CISA says that at-risk organizations should consider practices such as mitigating Internet-facing vulnerabilities, reducing the risk of phishing emails from reaching end users by using strong spam filters, enabling Multi-Factor Authentication (MFA), and using up-to-date anti-malware solutions. The guidance provided by CISA also includes additional information on how organizations could defend against and respond to ransomware attacks. This article continues to discuss CISA's guidance on protecting sensitive and personal information from ransomware-caused data breaches and other efforts to fend off the growing ransomware threat. 

Bleeping Computer reports "CISA Shares Guidance on How to Prevent Ransomware Data Breaches"