Thailand: Implemented NCSC Types of Cyber Threats, Prevention Measures, Response, Assessment, Suppression, and Mitigation of Cyber Threats at Each Level, B.E. 2564 (2021)

On 12 December 2021, the National Cyber Security Committee (NCSC) implemented Types of Cyber Threats, Prevention Measures, Response, Assessment, Suppression, and Mitigation of Cyber Threats at Each Level, B.E. 2564 (2021). This regulation outlines the classification of cyber threats into non-severe, severe, and critical categories and establishes guidelines for the prevention, response, assessment, suppression, and mitigation of these threats across various sectors. It details the identification of various cyber threats, including malware, phishing, and denial-of-service attacks, and provides guidelines for prevention, such as implementing robust security protocols and user education. The policy emphasises the importance of prompt response to incidents, systematic assessment of vulnerabilities, and effective suppression of ongoing threats. Additionally, it outlines strategies for mitigating risks at different organisational levels, ensuring a structured approach to enhancing cybersecurity resilience.