For criminals, employees are a doorway into an organization. The key to that door is often social engineering attacks in the form of phishing, whaling, and smishing, which can allow criminals access to protected areas of a network if any employee falls victim to them.
Ransomware is designed to encrypt files on a device, rendering them unusable. Criminals then demand ransom in exchange for decryption of the files; if the ransom is not paid, the files may be leaked or sold.
Empowering employees and contractors to understand how ransomware attacks begin can help USPS® reduce the likelihood of falling victim to ransomware.
If you believe your computer or device has been affected by ransomware, follow these steps:
n Stop working on the infected device.
n Notify the Cybersecurity Operations Center by emailing CyberSafe@usps.gov or calling 866-877-7247.
n Report the incident to your manager or supervisor.
n Do not use the computer or device until you are instructed to do so by the Computer Incident Response Team or the Help Desk.
Remember, if you suspect ransomware has been installed on your computer, report it immediately.
For more information about ransomware and other cybersecurity issues, visit the CyberSafe at USPS® pages on Blue (blue.usps.gov/cyber) and LiteBlue (liteblue.usps.gov/cyber).
— Corporate Information Security Office,
Chief Information Security Officer
and Digital Solutions, 4-7-22
