October 13, 2023 at 10:12AM
The US cybersecurity agency CISA has released two new resources to help organizations identify and eliminate security flaws targeted by ransomware groups. The resources include a column in the Known Exploited Vulnerabilities catalog that flags flaws associated with ransomware campaigns, and a table on the StopRansomware project’s website listing misconfigurations and weaknesses targeted by ransomware operators. CISA encourages organizations to review these resources and take action to reduce the risk of ransomware.
According to meeting notes, the US cybersecurity agency CISA is intensifying its efforts to combat ransomware by providing resources to help organizations identify and address vulnerabilities and misconfigurations that are commonly exploited in ransomware attacks.
CISA has launched the Ransomware Vulnerability Warning Pilot (RVWP) program, which aims to identify vulnerabilities associated with ransomware and warn critical infrastructure entities about these vulnerabilities. Through the RVWP, CISA has already identified more than 800 vulnerable systems in industries such as energy, education facilities, healthcare, and water systems.
To assist organizations, CISA has developed two new resources. The first is a column in the Known Exploited Vulnerabilities catalog that highlights vulnerabilities associated with ransomware campaigns. The catalog contains over 1,000 vulnerabilities that have been targeted in ransomware attacks. The second resource is a table on the StopRansomware project’s website that provides information on misconfigurations and weaknesses targeted by ransomware operators, along with recommended Cyber Performance Goal (CPG) actions for mitigation.
CISA encourages all organizations to review and utilize these resources to enhance their cybersecurity posture. Critical infrastructure entities are specifically encouraged to enroll in CISA’s vulnerability scanning service to receive targeted notifications.