Republic of the Philippines

NATIONAL POLICE COMMISSION

PHILIPPINE NATIONAL POLICE, NATIONAL CAPITAL REGION POLICE OFFICE
NORTHERN POLICE DISTRICT
OFFICE OF THE CHIEF DISTRICT DIRECTORIAL STAFF
Tanigue Street corner Dagat-dagatan Ave., Caloocan City

ICTMS 230913-0001
MEMORANDUM

FOR : See Distribution

FROM : ACDDS/Compliance to Privacy Officer

SUBJECT : Cybersecurity Advisory | Ransomware Protection

DATE : September 13, 2023

1. Reference: Memorandum from ACRS dated September 7, 2023, with

subject same as above.

2. This pertains to the memorandum issued by AD, ITMS, as technology

advances, so do the various types of ransomware attacks of which organizations
must be aware. Data is typically an organization’s most precious asset in the digital
age, and without adequate ransomware security, individuals and organizations alike
risk losing critical information.

3. Ransomware is a type of malware that locks files on a computer, making

them and systems that use them useless. Malicious actors using ransomware may
also steal the data from victims and force them to pay by threatening to share the
stolen data or asking for a ransom in exchange for unlocking.

4. These ransomware and data breach attacks can have a significant impact
on business processes by preventing organizations from accessing crucial data
required to function and deliver mission-critical services. The economic and
reputational repercussions are challenging and expensive to organizations of all
sizes during the initial disruption and, at times, during the recovery period.

5. Protecting against ransomware necessitates a multi-layered approach to

security as well as proactive actions to limit the likelihood of inspection. Here are
some key points to remember in order to avoid ransomware attacks:

a. Avoid clicking on links in spam communications or on unfamiliar

websites. Clicking on fraudulent links may result in an automated
download, potentially infecting your machine;

b. Avoid sharing personal information. Do not respond if you receive a call

text message, or email from unknown source requesting personal
information. Cybercriminals launching a ransomware attack may try to
obtain personal information in advance;
 ICTMS 230913-0001

c. Avoid opening strange email attachments. Ransomware can potentially

access your device through email attachments. Any suspicious-looking
attachments should be avoided;

d. Never connect unfamiliar USB sticks or storage media to your

computer. Cybercriminals might have contaminated the storage
medium and placed it in a public place to attract someone to use it;

e. Regularly patch and update software and operating systems to the

latest available versions;

f. Consider only trusted download sources;

g. Avoid using public Wi-Fi for important transactions or use a secure

VPN; service;

h. Educate personnel on how to recognize potential threats and the risks

of phishing emails and suspicious links; and

i. Maintain offline, encrypted backups of critical data and regularly test

the availability and integrity of the said backups.

6. Here are some tips in case you fall victim to a ransomware attack:

a. Disconnect from the internet: disconnect all virtual and physical

connections; this includes wireless and wired devices, external hard
drives, any storage media, and cloud accounts. This can help prevent
ransomware from spreading throughout the network;

b. Perform virus scanning: Using installed internet security software helps

you identify threats. If malicious files are found, you can either delete
them or quarantine them;

c. Try using a free ransomware decryption tool to regain access to your

data;

d. Restore backup;

e. Do not pay the ransom. There is no guarantee that the extortioners will
actually fullfill their promise and decrypt the data; and

f. Notify the PNP CERT.

7. Relative thereto, you may visit https://itms.pnp.gov.ph to download learning

materials regarding cybersecurity under the computer security tab. Should you have
any inquiries or concerns, you may contact ISSD at 8723-0401 local 6546 or email at
[email protected].

8. Further, cascade this to your personnel and submit your action taken to the
office of Information and Communication Technology Management Section, (ICTMS)
together with your office/unit certification in hard and softcopy with cover
memorandum signed by the chief of your office and forward through email address
[email protected] NLT September 14, 2023, 1:00PM (Thursday).
 ICTMS 230913-0001

10. For strict compliance and preferential action.

EDILBERTO B PITALLANO
Police Colonel

Distribution:
D-Staff
CAMANAVA CPS
DMFB
DESPO
DSOU
DSTS
DDEU
DHRAO
DLO
DHSU
DTPU
DPIO
DTU

Copy Furnished
Command Group