On October 3, 2022, the FFIEC released an update to the October 2018 Cybersecurity Resource Guide for Financial Institutions. The updated resource guide now includes ransomware-specific resources to address the ongoing threat of ransomware incidents.
The Cybersecurity Resource Guide is intended to help financial institutions meet their security control objectives and prepare to respond to cyber incidents. Due to the increasing number of ransomware incidents in recent years that continue to evolve in severity and complexity affecting the financial sector and other critical infrastructure organizations, the resource guide was updated to include ransomware-specific resources to address this ongoing threat. A total of four ransomware resources were added to the guide.
The updated Cybersecurity Resource Guide can be found here.