Swimage Monthly Newsletter – October 2021<\/p>\n\n\n
\n<\/figure><\/div>\n\n\n
NIST Ransomware Profile<\/strong><\/p>\n\n\n\n
In September, the National Institute of Standards and Technology (NIST) issued a report titled Cybersecurity Framework Profile for Ransomware Risk Management*. This report contains a Ransomware Profile which provides guidance on helping organizations prevent, respond to, and recover from ransomware events.<\/p>\n\n\n\n
The purpose of the Ransomware Profile “is to help organizations identify and prioritize opportunities for improving their security and resilience against ransomware attacks.”<\/p>\n\n\n\n
The profile suggests the following “basic preventative steps that an organization can take now to protect against the ransomware threat”:<\/p>\n\n\n\n
\u2022 Use antivirus software at all times. \u2022 Keep computers fully patched. \u2022 Segment networks. \u2022 Continuously monitor directory services (and other primary user stores) for indicators of compromise or active attack. \u2022 Block access to potentially malicious web resources. \u2022 Allow only authorized apps. \u2022 Use standard user accounts versus accounts with administrative privileges whenever possible. \u2022 Restrict personally owned devices on work networks. \u2022 Avoid using personal apps from work computers. \u2022 Educate employees about social engineering. \u2022 Assign and manage credential authorization for all enterprise assets and software, and periodically verify that each account has the appropriate access only.<\/p>\n\n\n\n
To help recover from a future ransomware event, the following steps are recommended:
\u2022 Make an incident recovery plan. Develop and implement an incident recovery plan with defined roles and strategies for decision making. This can be part of a continuity of operations plan. The plan should identify business-critical services to enable recovery prioritization, and business continuity plans for those critical services. \u2022 Backup data, secure backups, and test restoration. Carefully plan, implement, and test a data backup and restoration strategy\u2014and secure and isolate backups of important data. \u2022 Keep your contacts. Maintain an up-to-date list of internal and external contacts for ransomware attacks, including law enforcement.
The bulk of the report consists of a Ransomware Profile table which provides detailed guidance and informative references to the NIST Cybersecurity Framework Version 1.1. The main categories are the five Cybersecurity Framework Functions:
For purposes of this article, we are focusing on the Recover function. The sub-categories for the Recover function include:
\u2022 Recovery Planning – Recovery processes and procedures are executed and maintained to ensure restoration of systems or assets affected by cybersecurity incidents. \u2022 Improvements – Recovery planning and processes are improved by incorporating lessons learned into future activities. \u2022 Communications – Restoration activities are coordinated with internal and external parties (e.g., coordinating centers, Internet Service Providers, owners of attacking systems, victims, other CSIRTs, and vendors).
The report also contains multiple helpful references and resources, including NIST SP 800- 184, Guide for Cybersecurity Event Recovery.
Ransomware risk management is essential for every organization. Cybersecurity Framework Profile for Ransomware Risk Management provides extremely helpful guidance to prevent, respond to, and recover from ransomware events.
Swimage Rapid Recovery fits into the NIST Ransomware Profile as a vital component of the Recover function.<\/p>\n\n\n\n
Installation of our Ransomware Recovery solution is a fundamental part of the recovery planning process. Our software performs incremental backups and stores them in a secured location. Upon the occurrence of a ransomware event, the systems are automatically rebuilt from the ground up, from a known good source. This includes the operating system and applications. Then user data, profiles, and settings are restored from the secure backup location. This is all completed in about an hour and multiple systems may be rebuilt at the same time.
Please visit Swimage.com\/RansomwareRecovery for more information, including a short video.
We are offering existing customers a special discount for Swimage Rapid Recovery. Please contact us to discuss how we can assist with your organization\u2019s ransomware recovery planning. <\/p>\n","protected":false},"excerpt":{"rendered":"
Swimage Monthly Newsletter – October 2021 NIST Ransomware Profile In September, the National Institute of Standards and Technology (NIST) issued a reporttitled Cybersecurity Framework Profile<\/p>\n","protected":false},"author":14,"featured_media":0,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"om_disable_all_campaigns":false,"inline_featured_image":false,"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"_uf_show_specific_survey":0,"_uf_disable_surveys":false,"footnotes":""},"class_list":["post-15186","page","type-page","status-publish","hentry"],"yoast_head":"\n
Advanced & Fully Automated Cybersecurity Risk Management • Swimage<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.swimage.com\/staging\/advanced-fully-automated-cybersecurity-risk-management\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Advanced & Fully Automated Cybersecurity Risk Management • Swimage\" \/>\n<meta property=\"og:description\" content=\"Swimage Monthly Newsletter – October 2021 NIST Ransomware Profile In September, the National Institute of Standards and Technology (NIST) issued a reporttitled Cybersecurity Framework Profile\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.swimage.com\/staging\/advanced-fully-automated-cybersecurity-risk-management\/\" \/>\n<meta property=\"og:site_name\" content=\"Swimage\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/Swimage-154425397911672\" \/>\n<meta property=\"article:modified_time\" content=\"2024-09-07T21:04:05+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.swimage.com\/staging\/wp-content\/uploads\/2022\/02\/swimage-october.png\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:site\" content=\"@SwimageNow\" \/>\n<meta name=\"twitter:label1\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.swimage.com\\\/staging\\\/advanced-fully-automated-cybersecurity-risk-management\\\/\",\"url\":\"https:\\\/\\\/www.swimage.com\\\/staging\\\/advanced-fully-automated-cybersecurity-risk-management\\\/\",\"name\":\"Advanced & Fully Automated Cybersecurity Risk Management • Swimage\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.swimage.com\\\/staging\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.swimage.com\\\/staging\\\/advanced-fully-automated-cybersecurity-risk-management\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.swimage.com\\\/staging\\\/advanced-fully-automated-cybersecurity-risk-management\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.swimage.com\\\/staging\\\/wp-content\\\/uploads\\\/2022\\\/02\\\/swimage-october.png\",\"datePublished\":\"2022-02-16T00:17:52+00:00\",\"dateModified\":\"2024-09-07T21:04:05+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.swimage.com\\\/staging\\\/advanced-fully-automated-cybersecurity-risk-management\\\/#breadcrumb\"},\"inLanguage\":\"en\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.swimage.com\\\/staging\\\/advanced-fully-automated-cybersecurity-risk-management\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en\",\"@id\":\"https:\\\/\\\/www.swimage.com\\\/staging\\\/advanced-fully-automated-cybersecurity-risk-management\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.swimage.com\\\/staging\\\/wp-content\\\/uploads\\\/2022\\\/02\\\/swimage-october.png\",\"contentUrl\":\"https:\\\/\\\/www.swimage.com\\\/staging\\\/wp-content\\\/uploads\\\/2022\\\/02\\\/swimage-october.png\",\"width\":749,\"height\":418},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.swimage.com\\\/staging\\\/advanced-fully-automated-cybersecurity-risk-management\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.swimage.com\\\/staging\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Advanced & Fully Automated Cybersecurity Risk Management\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.swimage.com\\\/staging\\\/#website\",\"url\":\"https:\\\/\\\/www.swimage.com\\\/staging\\\/\",\"name\":\"Swimage\",\"description\":\"Modern PC Management\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.swimage.com\\\/staging\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.swimage.com\\\/staging\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.swimage.com\\\/staging\\\/#organization\",\"name\":\"Swimage\",\"url\":\"https:\\\/\\\/www.swimage.com\\\/staging\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en\",\"@id\":\"https:\\\/\\\/www.swimage.com\\\/staging\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.swimage.com\\\/staging\\\/wp-content\\\/uploads\\\/2021\\\/07\\\/Fish-blue-registered-white-background-768x512.png\",\"contentUrl\":\"https:\\\/\\\/www.swimage.com\\\/staging\\\/wp-content\\\/uploads\\\/2021\\\/07\\\/Fish-blue-registered-white-background-768x512.png\",\"width\":768,\"height\":512,\"caption\":\"Swimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.swimage.com\\\/staging\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/www.facebook.com\\\/Swimage-154425397911672\",\"https:\\\/\\\/x.com\\\/SwimageNow\",\"https:\\\/\\\/youtu.be\\\/17rWsOZLSxk\"]}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Advanced & Fully Automated Cybersecurity Risk Management • Swimage","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.swimage.com\/staging\/advanced-fully-automated-cybersecurity-risk-management\/","og_locale":"en_US","og_type":"article","og_title":"Advanced & Fully Automated Cybersecurity Risk Management • Swimage","og_description":"Swimage Monthly Newsletter – October 2021 NIST Ransomware Profile In September, the National Institute of Standards and Technology (NIST) issued a reporttitled Cybersecurity Framework Profile","og_url":"https:\/\/www.swimage.com\/staging\/advanced-fully-automated-cybersecurity-risk-management\/","og_site_name":"Swimage","article_publisher":"https:\/\/www.facebook.com\/Swimage-154425397911672","article_modified_time":"2024-09-07T21:04:05+00:00","og_image":[{"url":"https:\/\/www.swimage.com\/staging\/wp-content\/uploads\/2022\/02\/swimage-october.png","type":"","width":"","height":""}],"twitter_card":"summary_large_image","twitter_site":"@SwimageNow","twitter_misc":{"Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.swimage.com\/staging\/advanced-fully-automated-cybersecurity-risk-management\/","url":"https:\/\/www.swimage.com\/staging\/advanced-fully-automated-cybersecurity-risk-management\/","name":"Advanced & Fully Automated Cybersecurity Risk Management • Swimage","isPartOf":{"@id":"https:\/\/www.swimage.com\/staging\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.swimage.com\/staging\/advanced-fully-automated-cybersecurity-risk-management\/#primaryimage"},"image":{"@id":"https:\/\/www.swimage.com\/staging\/advanced-fully-automated-cybersecurity-risk-management\/#primaryimage"},"thumbnailUrl":"https:\/\/www.swimage.com\/staging\/wp-content\/uploads\/2022\/02\/swimage-october.png","datePublished":"2022-02-16T00:17:52+00:00","dateModified":"2024-09-07T21:04:05+00:00","breadcrumb":{"@id":"https:\/\/www.swimage.com\/staging\/advanced-fully-automated-cybersecurity-risk-management\/#breadcrumb"},"inLanguage":"en","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.swimage.com\/staging\/advanced-fully-automated-cybersecurity-risk-management\/"]}]},{"@type":"ImageObject","inLanguage":"en","@id":"https:\/\/www.swimage.com\/staging\/advanced-fully-automated-cybersecurity-risk-management\/#primaryimage","url":"https:\/\/www.swimage.com\/staging\/wp-content\/uploads\/2022\/02\/swimage-october.png","contentUrl":"https:\/\/www.swimage.com\/staging\/wp-content\/uploads\/2022\/02\/swimage-october.png","width":749,"height":418},{"@type":"BreadcrumbList","@id":"https:\/\/www.swimage.com\/staging\/advanced-fully-automated-cybersecurity-risk-management\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.swimage.com\/staging\/"},{"@type":"ListItem","position":2,"name":"Advanced & Fully Automated Cybersecurity Risk Management"}]},{"@type":"WebSite","@id":"https:\/\/www.swimage.com\/staging\/#website","url":"https:\/\/www.swimage.com\/staging\/","name":"Swimage","description":"Modern PC Management","publisher":{"@id":"https:\/\/www.swimage.com\/staging\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.swimage.com\/staging\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en"},{"@type":"Organization","@id":"https:\/\/www.swimage.com\/staging\/#organization","name":"Swimage","url":"https:\/\/www.swimage.com\/staging\/","logo":{"@type":"ImageObject","inLanguage":"en","@id":"https:\/\/www.swimage.com\/staging\/#\/schema\/logo\/image\/","url":"https:\/\/www.swimage.com\/staging\/wp-content\/uploads\/2021\/07\/Fish-blue-registered-white-background-768x512.png","contentUrl":"https:\/\/www.swimage.com\/staging\/wp-content\/uploads\/2021\/07\/Fish-blue-registered-white-background-768x512.png","width":768,"height":512,"caption":"Swimage"},"image":{"@id":"https:\/\/www.swimage.com\/staging\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/Swimage-154425397911672","https:\/\/x.com\/SwimageNow","https:\/\/youtu.be\/17rWsOZLSxk"]}]}},"_links":{"self":[{"href":"https:\/\/www.swimage.com\/staging\/wp-json\/wp\/v2\/pages\/15186","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.swimage.com\/staging\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/www.swimage.com\/staging\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/www.swimage.com\/staging\/wp-json\/wp\/v2\/users\/14"}],"replies":[{"embeddable":true,"href":"https:\/\/www.swimage.com\/staging\/wp-json\/wp\/v2\/comments?post=15186"}],"version-history":[{"count":5,"href":"https:\/\/www.swimage.com\/staging\/wp-json\/wp\/v2\/pages\/15186\/revisions"}],"predecessor-version":[{"id":17672,"href":"https:\/\/www.swimage.com\/staging\/wp-json\/wp\/v2\/pages\/15186\/revisions\/17672"}],"wp:attachment":[{"href":"https:\/\/www.swimage.com\/staging\/wp-json\/wp\/v2\/media?parent=15186"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
![\"\"](\"https:\/\/www.swimage.com\/staging\/wp-content\/uploads\/2022\/02\/swimage-october.png\")
<\/figure><\/div>\n\n\n![\"\"](\"https:\/\/www.swimage.com\/staging\/wp-content\/uploads\/2024\/09\/RansomewareRecovery-edited-2.jpg\")
<\/figure><\/div>\n\n\n