Resources

Resources for Cyber Security.

Tools to enhance your cyber security strategy for your township, village, and community.

The Ohio Cyber Program connects people with real-time strategies, publications, and resources from subject-matter experts at the local, state, and federal level. Check back for a cyber TTX exercise, a contingency plan model for your county, and a mock cyber incident that are under development.

Assessments: Cyber Resilience Review (CRR)
The CRR is a no-cost, voluntary, non-technical assessment to evaluate an organization’s operational resilience and cyber security practices.

Assessments: DHS Cyber Assessments
A core component of ICS-CERT's risk management mission is conducting security assessments in partnership with ICS stakeholders, including critical infrastructure owners and operators, ICS vendors, integrators, Sector-Specific Agencies, other Federal departments and agencies, SLTT governments, and international partners.

CISA Analysis of Risk and Vulnerability Assessments
The findings from the Risk and Vulnerability Assessments (RVA) conducted each fiscal year.

Cyber Incident Reporting [2017] (PDF)
A Unified Message for Reporting to the Federal Government.

If You See Something, Say Something.

Then make the call to local authorities.

Homeland Security Public Service Announcement

Cyber Risk Summary: Energy Sector (PDF)
CISA recommends the following mitigations to reduce cyber risk among Energy Sector entities.

Cybersecurity - A Short Business Guide for Small Businesses (PDF)
Many entrepreneurs don’t realize that small businesses are just as at risk for cyberattacks as larger companies, but they are.

Cybersecurity Quarterly
The official digital publication from the Center for Internet Security (CIS).

DarkSide Ransomware (PDF)
Best Practices for Preventing Business Disruption from Ransomware Attacks.

DHS: Cyber Security
Our daily life, economic vitality, and national security depend on a stable, safe, and resilient cyberspace.

DHS: National Cyber Security and Communications Integration Center (NCCIC)
The National Cybersecurity and Communications Integration Center (NCCIC) is a cyber situational awareness, incident response, and management center for the Federal Government, intelligence community, and law enforcement.

DHS: US Computer Emergency Readiness Team (US-CERT)
US-CERT strives for a safer, stronger Internet for all Americans by responding to major incidents, analyzing threats, and exchanging critical cybersecurity information with trusted partners around the world.

Education: SBA – Cyber Security Training for Small Businesses
Self-paced training exercise provides an introduction to securing information in a small business.

FBI: Infragard Program
InfraGard is a partnership between the FBI and the private sector. It is an association of persons who represent businesses, academic institutions, state and local law enforcement agencies, and other participants dedicated to sharing information and intelligence to prevent hostile acts against the U.S.

FBI: Internet Crime Complaint Center (IC3)
The IC3 accepts online Internet crime complaints from either the actual victim or from a third party to the complainant.

FEMA: Be Prepared For A Cyberattack (PDF)
Cyberattacks can lead to loss of money, theft of personal information, and damage to your reputation and safety.

Keeping Your Stay-at-Home Family Cyber Safe (2021) (PDF)
Cisco’s Trust Center white paper.

Malicious Cyber Activity Targeting Critical SAP Applications (CISA)
SAP systems running outdated or misconfigured software are exposed to increased risks of malicious attacks.

MS-ISAC: Multi-State Information Sharing & Analysis Center
The Multi-State Information Sharing and Analysis Center (MS-ISAC) is designated by the US Department of Homeland Security as the focal point for cyber threat prevention, protection, response and recovery for the nation's state, local, tribal and territorial (SLTT) governments.

Planning: NIST Cybersecurity Framework
The national and economic security of the United States depends on the reliable functioning of critical infrastructure.

Stop Ransomware Website
The U.S. Government launched a new website to help public and private organizations defend against the rise in ransomware cases. StopRansomware.gov is a whole-of-government approach that gives one central location for ransomware resources and alerts. CISA encourages organizations to use this new website to understand the threat of ransomware, mitigate risk, and in the event of an attack, know what steps to take next.

News Archives.

Fake Zoom App Dropped by New APT ‘LuminousMoth’
July 19, 2021 - threatpost.com


Ransomware Guide (September 2020)
July 14, 2021 - Multi-State Information Sharing & Analysis Center (MS-ISAC)


Preparing Your Organization For Ransomware Attacks
June 29, 2021 - National Institute of Standards and Technology (NIST)


NIST Cybersecurity & Privacy Program
June 29, 2021 - National Institute of Standards and Technology (NIST)


Tips and Tactics for Dealing With Ransomware
June 29, 2021 - National Institute of Standards and Technology (NIST)


Supply Chain Cybersecurity Resources Guide
June 24, 2021 - Multi-State Information Sharing & Analysis Center (MS-ISAC)


Rising Ransomware Threat To Operational Technology Assets
June 14, 2021 - Cybersecurity & Infrastructure Security Agency (CISA)


Risk to Critical Infrastructure: Telecommunications Central Offices
June 7, 2021 - Cybersecurity & Infrastructure Security Agency (CISA)


Hitting the Jackpot - How Ransomware Targeting VMware ESXi Servers is Used in Big Game Hunting to Increase the Speed and Scope of the Attacks
June 3, 2021 - Federal Office for Information Security