Line 32: |
Line 32: |
| | | |
| ==Stop Ransomware Site== | | ==Stop Ransomware Site== |
− | StopRansomware.gov is the U.S. Government's official one-stop location for resources to tackle ransomware, run by CISA. | + | StopRansomware.gov is the U.S. Government's official one-stop location for resources to tackle ransomware, run by CISA.<ref>[https://www.cisa.gov/stopransomware/resources Resources, Stop Ransomware, CISA]</ref> |
| | | |
| + | ===Cyber Hygiene Services=== |
| + | CISA offers scanning and testing services for assessing, identifying, and reducing exposure to threats, including ransomware. These scans: |
| + | * Identify externally accessible and thus vulnerable assets and services |
| + | * Find website weaknesses and poor configurations |
| + | * Determine the susceptibility of an organization’s personnel to opening malicious emails with [[phishing]] links |
| + | * Test perimeter defenses by mimicking [[MITRE ATT&CK|adversial tactics]] used to gain unauthorized access to networks |
| + | |
| + | ===CSET=== |
| + | The Cyber Security Evaluation Tool (CSET) is a stand-alone desktop application to help operators systematically evaluate Operational Technology and Information Technology.<ref>[https://github.com/cisagov/cset/releases CSET, CISA]</ref> It includes the Ransomware Readiness Assessment (RRA) module, which is a self-assessment based on a tiered set of practices to help organizations assess how well they are equipped to defend against and recover from a ransomware incident.<ref>[https://us-cert.cisa.gov/ncas/current-activity/2021/06/30/cisas-cset-tool-sets-sights-ransomware-threat RRA, CISA News Release]</ref> |
| | | |
| ==NRMC== | | ==NRMC== |