Over the past few years, and even as recent as last week, organizations have suffered from ransomware attacks and/or have been affected by data breaches. These attacks have become so frequent that they became a major topic of discussion at the recent G7 meetings, and the US has increased resources within the DHS CISA (Cybersecurity and Infrastructure Security Agency) department to help deal with the most serious of these attacks and breaches.
The volume of these attacks has been substantially increasing over the past several years and months, many that are so destructive that they have been raising significant concerns at the state and national levels—especially for organizations such as government agencies, healthcare facilities, and banks, along with private organizations (no one is immune to these attacks !!). The ECM standards organization developed this detailed article which discusses many aspects of these attacks and provides guidance for organizations seeking to evaluate their vulnerability related to their current record-keeping methodologies and procedures. This article was developed for use by records managers, executives, and others responsible for organizational record security, management, and associated policies and procedures.
The ECM standards organization consists of 3 working groups: WG2-Trustworthy Content/Records Management, WG1-Trustworthy Storage Technologies, and WG3-Information Capture. A sub-committee of Working Group 2 developed a detailed article discussing how to evaluate how vulnerable your organizational records are, and the industry recommended practices that should be considered to help identify and then address those areas of vulnerability.
The authors of this article are Robert M. Blatt, President and Principal Consultant with Electronic Image Designers (EID), Inc.; Dr. Patricia C. Franks, Professor Emerita, San José State University; and Amitabh Srivastav, VP, Compliance & Governance, HELUX. For more information or assistance on these topics, please contact Betsy Fanning, Program Director, ECM Standards Program at [email protected] or Robert Blatt, WG1/WG2 Committee Chair at [email protected]
A copy of this article can be located and downloaded here: Reducing the potential impact of Ransomware affecting critical records