Search: [government] - Shared Bookmarks

Ransomware is a type of malicious attack where attackers encrypt an organization’s data and demand payment to restore access. Attackers may also steal an organization’s information and demand an additional payment in return for not disclosing the information to authorities, competitors, or the public. This Cybersecurity Framework (CSF) 2.0 Community Profile identifies the security objectives from the NIST CSF 2.0 that support governing management of, identifying, protecting against, detecting, responding to, and recovering from ransomware events. The Profile can be used as a guide to managing the risk of ransomware events. That includes helping to gauge an organization’s level of readiness to counter ransomware threats and to deal with the potential consequences of events. This Profile can be leveraged in developing a ransomware countermeasure playbook.

The public comment period on this draft is open.

ransomware · nist · government · standards · csf

January 15, 2025 at 10:59:51 PM EST * · permalink

·

https://csrc.nist.gov/pubs/ir/8374/r1/ipd

Critical Infrastructure Protection: Additional Federal Coordination Is Needed to Enhance K-12 Cybersecurity | U.S. GAO

U.S. schools rely on information technology for many operations. But cybersecurity incidents, like ransomware attacks, could significantly affect...

ransomware · government · infosec

January 11, 2025 at 5:43:30 PM EST * · permalink

·

https://www.gao.gov/products/gao-23-105480

What is Brain Cipher? The Ransomware that Took Down the Indonesian National Data Center

The Indonesian National Data Center was hit by a significant ransomware attack with the ransomware identified as Brain Cipher, a new variant of LockBit 3.0.

Attribution of the December 2024 Rhode Island ransomware incident was linked to this group.

brain-cipher · ransomware · lockbit · government · indonesia · threat-intel · actor · infosec

January 11, 2025 at 12:52:13 AM EST * · permalink

·

https://www.sangfor.com/farsight-labs-threat-intelligence/cybersecurity/what-is-brain-cipher-ransomware-took-down-indonesian-national-data-center

The FBI on Ransomware

ransomware · do-not-pay · technology · government · policy

January 10, 2025 at 11:39:51 PM EST * · permalink

·

https://www.fbi.gov/how-we-can-help-you/scams-and-safety/common-frauds-and-scams/ransomware

Victims of Identity Theft, 2018

This bulletin was prepared by the Bureau of Justice Statistics of the U.S. Department of Justice.

pdf · doj · government · privacy · identity-theft · crime · justice · reference · cite · statistics

January 10, 2025 at 11:38:51 PM EST * · permalink

·

https://bjs.ojp.gov/content/pub/pdf/vit18.pdf

Culture eats policy - Niskanen Center

In the business world, they say that culture eats strategy for breakfast—meaning that the people implementing the strategy, and the skills, attitudes, and assumptions they bring to it, will make more difference than even the most brilliant plan. In government, culture eats policy.

This article is also a story about the importance of domain knowledge and why it's difficult (and risky) to push back against the norms, especially when it's the right thing to do. As I say: the process is not the point.

government · technology · policy · culture · expertise · hiring · i-recommend

January 10, 2025 at 9:03:52 PM EST * · permalink

·

https://niskanencenter.org/culture-eats-policy

Hackers seek ransom after getting SSNs, banking info from state gov’t portal - Ars Technica

Rhode Island said it’s being extorted after hack of Deloitte-run benefits system.

ransomware · government

January 10, 2025 at 8:50:22 PM EST * · permalink

·

https://arstechnica.com/tech-policy/2024/12/hackers-infiltrate-rhode-island-benefits-portal-forcing-state-to-shut-it-down/