Security News > 2021 > June > CISA releases new ransomware self-assessment security audit tool
The US Cybersecurity and Infrastructure Security Agency has released the Ransomware Readiness Assessment, a new module for its Cyber Security Evaluation Tool.
RRA is a security audit self-assessment tool for organizations that want to understand better how well they are equipped to defend against and recover from ransomware attacks targeting their information technology, operational technology, or industrial control system assets.
"The RRA also provides a clear path for improvement and contains an evolving progression of questions tiered by the categories of basic, intermediate, and advanced," CISA says on the tool's wiki page.
Guides asset owners and operators through a systematic process to evaluate their operational technology and information technology network security practices against the ransomware threat.
CISA has previously released Aviary, a tool to review post-compromise activity in Microsoft Azure Active Directory, Office 365, and Microsoft 365 environments.
CISA also released CHIRP, a Python-based forensics collection tool that detects signs of SolarWinds hackers' activity on Windows systems.
News URL
Related news
- Major security audit of critical FreeBSD components now available (source)
- CISA Warns of Critical Fortinet Flaw as Palo Alto and Cisco Issue Urgent Security Patches (source)
- CISA proposes new security requirements to protect govt, personal data (source)
- CISA says BianLian ransomware now focuses only on data theft (source)