Draft: Data Integrity Identifying and Protecting Assets Against Ransomware and Other Destructive Events

Ransomware, destructive malware, insider threats, and even honest user mistakes present ongoing threats to organizations. Organizations’ data, such as database records, system files, configurations, user files, applications, and customer data, are all potential targets of data corruption, modification, and destruction. Formulating a defense against these threats requires two things: a thorough knowledge of the assets within the enterprise, and the protection of these assets against the threat of data corruption and destruction. The NCCoE, in collaboration with members of the business community and vendors of cybersecurity solutions, has built an example solution to address these data integrity challenges.

Multiple systems need to work together to identify and protect an organization’s assets against the threat of corruption, modification, and destruction. This project explores methods to effectively identify assets (devices, data, and applications) that may become targets of data integrity attacks, as well as the vulnerabilities in the organization’s system that facilitate these attacks. It also explores methods to protect these assets against data integrity attacks using backups, secure storage, integrity checking mechanisms, audit logs, vulnerability management, maintenance, and other potential solutions.

The entire report follows under key resources. 

Related Resources

Guides/Reports
Public
This edition of Hacking Healthcare,provides an analysis of the coronavirus that tries to cut through the media sensationalism to explore a more nuanced…
Guides/Reports
Public
The emergence of artificial intelligence (AI) as a tool for better health care offers unprecedented opportunities to improve patient and clinical team outcomes…
Guides/Reports
Public
In this edition of Hacking Healthcare, we begin by examining a milestone in the integration of Artificial Intelligence/Machine Learning (AI/ML) into drug…
Guides/Reports
Member
    On 06 January 2020, the FBI disseminated the FLASH message “Kwampirs Malware Indicators of Compromise Employed in Ongoing Cyber Supply Chain…
Guides/Reports
Public
Recently, malicious cyber threat actors have been leveraging the current news cycle to launch Coronavirus themed cyberattacks at their targets. Prominent news…
Guides/Reports
Public
National Cyber Awareness System: AA20-031A: Detecting Citrix CVE-2019-19781 01/31/2020 01:07 PM EST   Original release date: January 31, 2020 Summary…