NIST Special Publication 1800-26, titled “Data Integrity: Detecting and Responding to Ransomware and Other Destructive Events,” provides a practical, standards-based reference guide to help organizations maintain the integrity and availability of critical data. It focuses on detecting, responding to, and mitigating ransomware and other destructive cyber events, aligning with the NIST Cybersecurity Framework to manage enterprise risk. The publication is divided into three volumes: an Executive Summary (1800-26A), a detailed approach and architecture description (1800-26B), and practical how-to guides for implementing the solution (1800-26C). It offers modular, real-world guidance for developing cybersecurity programs that ensure data integrity, support business operations, and improve defenses against cyber threats.
Publication's URL
https://csrc.nist.gov/pubs/sp/1800/26/finalAdditional documents on this topic
- NIST SP 1800-11 Data Integrity: Recovering from Ransomware and Other Destructive Events
- NIST SP 1800-25 Data Integrity: Identifying and Protecting Assets Against Ransomware and Other Destructive Events
- ANSSI Cyber threat overview 2024 (in 2025)
- NIST IR 8374 Rev. 1 Ransomware Risk Management: A Cybersecurity Framework 2.0 Community Profile
- ANSSI Recommendations for Secure Administration of AD-based IS (FRENCH)