CISA Now Provides Warnings on Ransomware-Related Vulnerabilities to Organizations

The Cybersecurity and Infrastructure Security Agency has updated the Ransomware Vulnerability Warning Pilot to alert all organizations about vulnerabilities in their systems that could enable a ransomware attack.

Prior to the update, the RVWP only provided network vulnerability notifications and access to a catalog of vulnerabilities commonly exploited by ransomware actors to critical infrastructure entities.

Other changes include the addition of a list of misconfigurations and weaknesses linked to ransomware campaigns to help organizations speed up the identification and mitigation of potential threats, CISA said.

The RVWP was established in January under the Cyber Incident Reporting for Critical Infrastructure Act of 2022, benefiting critical infrastructure entities in the energy, health care and public health, water and wastewater systems sectors. Since its implementation, the program has identified over 800 systems with internet-accessible vulnerabilities using CISA’s cyber hygiene vulnerability scanning service, data sources and other technologies.

All organizations are encouraged to enroll in the scanning service for faster ransomware threat notifications.