The IT Law Wiki
Advertisement

Definition[]

Eradication is the process of removing malware from an infected system.

Overview[]

"After an incident has been contained, eradication may be necessary to eliminate components of the incident, such as deleting malware and disabling breached user accounts, as well as identifying and mitigating all vulnerabilities that were exploited. During eradication, it is important to identify all affected assets within the organization so that they can be remediated. For some incidents, eradication is either not necessary or is performed during recovery."[1]

References[]

Advertisement