MS-ISAC Releases Security Primer on LockerGoga Ransomware

Original release date: April 01, 2019

The Multi-State Information Sharing & Analysis Center (MS-ISAC) has released a Security Primer on LockerGoga Ransomware—a type of malicious software, or malware, designed to deny access to a computer system or data until a ransom is paid.

Ransomware can be devastating to an individual or an organization. The Cybersecurity and Infrastructure Security Agency (CISA) discourages individuals and organizations from paying the ransom, as this does not guarantee access will be restored.

CISA encourages users and administrators to review MS-ISAC’s White Paper: Security Primer – LockerGoga and associated indicators of compromise (IOCs), CISA’s Ransomware page, and the U.S. Government’s Interagency Joint Guidance for further information and to implement the following best practices:

  • Create system back-ups.
  • Be wary of opening emails and attachments from unknown or unverified senders.
  • Ensure that systems are updated with the latest patches.

This product is provided subject to this Notification and this Privacy & Use policy.


Supply Chain Integrity Month

Original release date: April 01, 2019

April is Supply Chain Integrity Month. The Cybersecurity and Infrastructure Security Agency (CISA), the Office of the Director of National Intelligence (ODNI), and the Department of Defense (DOD) are partnering to promote the importance of supply chain security and risk management. Breaches in the supply chain provide an opportunity for malicious software or hardware to be installed on equipment. Lack of awareness or validation of the legitimacy of hardware and software presents a serious risk to users’ information and the overall integrity of a network environment.

CISA recommends users and administrators review ODNI’s guidance on Supply Chain Risk Management for more information.


This product is provided subject to this Notification and this Privacy & Use policy.