The Multi-State Information Sharing & Analysis Center (MS-ISAC) has released a Security Primer on LockerGoga Ransomware—a type of malicious software, or malware, designed to deny access to a computer system or data until a ransom is paid.

Ransomware can be devastating to an individual or an organization. Anyone with important data stored on their computer or network is at risk, including government or law enforcement agencies and healthcare systems or other critical infrastructure entities. Recovery can be a difficult process that may require the services of a reputable data recovery specialist. CERT Bulgaria discourages individuals and organizations from paying the ransom, as this does not guarantee access will be restored.

CERT Bulgaria recommedns users and administrators to review following articles for further information and to implement the following best practices:

• Create system back-ups,
• Be wary of opening emails and attachments from unknown or unverified senders, and
• Ensure that systems are updated with the latest patches.

White Paper: Security Primer – LockerGoga

https://www.cisecurity.org/white-papers/security-primer-lockergoga/

CISA’s Ransomware page

https://www.us-cert.gov/Ransomware

U.S. Government’s Interagency Joint Guidance

https://www.us-cert.gov/sites/default/files/publications/Ransomware_Executive_One-Pager_and_Technical_Document-FINAL.pdf