2024 MS-ISAC Tribal Sector Cybersecurity Guide

Enhance Your U.S. Tribal Organization's Cybersecurity Posture

The average cyber maturity score for U.S. Tribal organizations who participated in the 2023 Nationwide Cybersecurity Review (NCSR) was 3.76 on a 1–7 scale, a score which fell below that of other sectors. These organizations' top security concerns included lack of documented processes, insufficient funding, and increasing threat sophistication.

These threats confronting U.S. Tribal organizations come in various forms. Consider the following:

  • Our threat landscape analysis from January 2023 to May 2024 identified SocGholish, ZPHP, and MageCart as the top malware impacting Tribal entities, with AsyncRAT emerging as the primary non-malware threat.
  • The Malicious Domain Blocking and Reporting (MDBR) service blocked 98 million malicious DNS requests for U.S. Tribal organizations during that period. These requests predominantly consisted of "Command and Control" and "Malware"- related activity. Additionally, incident response engagements addressed business email compromise, phishing, malware infections, and ransomware incidents.

Don't know how to improve your U.S. Tribal organization's cybersecurity posture? No problem!

Fill out the form below to receive more information about how you can improve your cyber maturity by adopting a framework, conducting continuous assessments, and taking full advantage of available resources and partnerships.

FILL OUT THE FORM BELOW

Complete the form below to access the report.

^ By submitting the form, I have reviewed the CIS Privacy Notice, which details the way in which CIS utilizes personal data, including the use of standard web beacons.

* Indicates required field

If you experience any issues during registration, please contact us at learn@cisecurity.org.