The RTF will commission expert papers on the topic, engage stakeholders across industries, identify gaps in current solutions, and then work on a common roadmap to have issues addressed among all members.
The end result should be a standardized framework for dealing with ransomware attacks across verticals, one based on an industry consensus rather than individual advice received from lone contractors.
The 19 initial founding members reflect the RTF’s dedication to putting together a diverse team of experts:
- Aspen Digital (policy maker group)
- Citrix (networking equipment vendor)
- The Cyber Threat Alliance (cybersecurity industry sharing group)
- Cybereason (security firm)
- The CyberPeace Institute (non-profit dedicated to help victims of cyberattacks)
- The Cybersecurity Coalition (policy maker group)
- The Global Cyber Alliance (non-profit dedicated to reducing cyber risk)
- The Institute for Security and Technology (policy maker group)
- McAfee (security firm)
- Microsoft (security firm)
- Rapid7 (security firm)
- Resilience (cyberinsurance provider)
- SecurityScorecard (compliance and risk management)
- Shadowserver Foundation (non-profit security organization)
- Stratigos Security (cybersecurity consulting)
- Team Cymru (threat intelligence)
- Third Way (think tank)
- UT Austin Stauss Center (research group)
- Venable LLP (law firm)
Currently, ransomware is neither the most widespread form of malware nor the type of cyberattack that causes the largest financial losses to companies each year.
That title goes to BEC scams, according to the FBI.
“This crime transcends sectors and requires bringing all affected stakeholders to the table to synthesize a clear framework of actionable solutions, which is why IST and our coalition of partners are launching this Task Force for a two-to-three months sprint,” the Institute for Security and Technology said.
This article first appeared in the NFA Post and is republished with permission.