Skip to main content
U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Cybersecurity Risks

This page includes resources that provide overviews of cybersecurity risk and threats and how to manage those threats. The Risks & Threats section includes resources that includes threats and risks like ransomware, spyware, phishing and website security. The Risk Management section includes resources that describe the importance of managing risk and common security risk and mitigations misunderstandings.

Risks & Threats

New Ransomware – a consolidated website with information on ransomware alerts, reports, and resources from CISA, the FBI, and other federal partners.
CISA

Ransomware – an overview of ransomware and tips to protect your business
Federal Trade Commission

Protecting Against Malicious Code – a description of viruses, worms, and Trojan horses and tips for protecting your business from these types of malicious code
CISA

Handling Destructive Malware – an overview of the threat of destructive malware, potential distribution vectors, and tips for protecting your business
CISA

Recognizing and Avoiding Spyware – an overview of spyware, why malicious spyware could be damaging to your business, how to detect spyware, and tips for protecting your business
Department of Homeland Security

Understanding Denial-of-Service Attacks – description of the threat of denial-of-service attacks and tips for protecting your business
Department of Homeland Security

Phishing – an overview of phishing and tips for protecting your business from phishing attacks
Federal Trade Commission

Business Email Imposters – tips for protecting your business against business email scams
Federal Trade Commission

Securing Network Infrastructure Devices – description of threats to network infrastructure devices and tips for protecting those devices
Department of Homeland Security

Website Security – overview of threats from website attacks and tips on how to protect your business
Department of Homeland Security

Securing Wireless Networks – summary of risks to your wireless network and how to protect against those risks
Department of Homeland Security

Cyber Threats to Mobile Phones – risks to cell phones and personal data assistants and tips to protect them
Department of Homeland Security

Risk Management

Rumor Control Page Start-Up Guide – describes common misunderstandings about security risks and risk mitigations
CISA

Baldrige Cybersecurity Initiative - The Baldrige Cybersecurity Excellence Builder is intended for use by leaders and managers—senior leaders, chief security officers, and chief information officers, among others—who are concerned with and responsible for mission-driven, ­cybersecurity-related policy and operations. 
Baldrige Cybersecurity Initiative

Content outlined on the Small Business Cybersecurity Corner webpages contains documents and resources from our contributors. These resources were identified by our contributors as information they deemed most relevant and timely—and were chosen based on the current needs of the small business community.  Certain commercial entities may be identified in this Web site or linked Web sites. Such identification is not intended to imply recommendation or endorsement by NIST, nor is it intended to imply that the entities, materials, or equipment are necessarily the best available for the purpose.

Created February 7, 2019, Updated November 3, 2023