CISA, the US Cybersecurity and Infrastructure Security Agency, has announcing that it has created the Ransomware Vulnerability Warning Pilot (RVWP). This is in response to a requirement of The Cyber Incident Reporting for Critical Infrastructure Act of 2022 (CIRCIA), which President Biden signed into law in March 2022.
Through the RVWP, CISA will:
- Proactively identify information systems belonging to critical infrastructure entities that contain vulnerabilities commonly associated with ransomware intrusions.
- Notify the owners of the affected information systems, which will enable the owners to mitigate the vulnerabilities before damaging intrusions occur.
Notifications will contain key information regarding the vulnerable system, such as the manufacturer and model of the device, the IP address in use, how CISA detected the vulnerability, and guidance on how the vulnerability should be mitigated.
CISA regional staff members will make notifications by phone call or email. If you receive a notification, you can verify the identity of the CISA personnel through CISA Central: Central@cisa.gov or (888) 282-0870.