Skip to main content
U.S. flag

An official website of the United States government

Here’s how you know

Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

HTTPS

Secure .gov websites use HTTPS
A lock (LockA locked padlock) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Stop Ransomware
 
 
  • Resources
  • Newsroom
  • Alerts
  • Report Ransomware
  • Cisa.gov
Breadcrumb
  1. Home
  2. Stop Ransomware

Resources

  • Bad Practices
  • Campaigns
  • Fact Sheets and Information
  • Public Safety Emergency Communications Resources
  • Ransomware 101
  • Ransomware Guide
  • Sector Risk Management Agencies
  • Services
  • Training
  • Webinars

Ransomware is an ever-evolving form of malware designed to encrypt files on a device, rendering any files and the systems that rely on them unusable. Malicious actors then demand ransom in exchange for decryption. Ransomware actors often target and threaten to sell or leak exfiltrated data or authentication information if the ransom is not paid. In recent months, ransomware has dominated the headlines, but incidents among the Nation’s state, local, tribal, and territorial (SLTT) government entities and critical infrastructure organizations have been growing for years.

Malicious actors continue to adapt their ransomware tactics over time. Federal agencies remain vigilant in maintaining awareness of ransomware attacks and associated tactics, techniques, and procedures across the country and around the world.

Have you been hit by ransomware? The Ransomware Response Checklist from the Ransomware Guide is your next stop.

Want to learn how to avoid ransomware? How Can I Protect Against Ransomware is a valuable resource to learn about avoiding Bad Practices.

The U.S. Secret Service provides guidance for how and where to report a cyber incident in their Preparing for a Cyber Incident document. Likewise, NIST's Ransomware Protection and Response provides information on response and recovery.

Sector-specific guidance will be provided for all 16 critical infrastructure sectors vital to the Nation. Disabling or destroying the 16 critical infrastructure sectors would cause great harm to security, economic welfare, public health, and safety. They include Energy, Food, Healthcare, and Information Technology – some of the sectors targeted in recent high profile cyber attacks. The current general guidance should be implemented now.

Stopransomware.gov provides guidance and resources from Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency, the United States Secret Service, the Department of Justice's Federal Bureau of Investigation, the U.S. Department of Health and Human Services, the National Institute of Standards and Technology, and the U.S. Department of Treasury.

Stop Ransomware
CONTACT
 
  • About CISA
  • Accessibility
  • Budget and Performance
  • DHS.gov
  • FOIA Requests
  • No FEAR Act
  • Office of Inspector General
  • Privacy Policy
  • The White House
  • USA.gov
  • Website Feedback