Skip to main content
U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Guide to Malware Incident Prevention and Handling for Desktops and Laptops



Murugiah P. Souppaya, Karen Scarfone


Malware, also known as malicious code, refers to a program that is covertly inserted into another program with the intent to destroy data, run destructive or intrusive programs, or otherwise compromise the confidentiality, integrity, or availability of the victim's data, applications, or operating system. Malware is the most common external threat to most hosts, causing widespread damage and disruption and necessitating extensive recovery efforts within most organizations. This publication provides recommendations for improving an organization's malware incident prevention measures. It also gives extensive recommendations for enhancing an organization's existing incident response capability so that it is better prepared to handle malware incidents, particularly widespread ones. [Supersedes SP 800-83 (November 2005): search.cfm?pub_id=150416]
Special Publication (NIST SP) - 800-83 Rev 1
Report Number
800-83 Rev 1


incident response, information security, malware


Souppaya, M. and Scarfone, K. (2013), Guide to Malware Incident Prevention and Handling for Desktops and Laptops, Special Publication (NIST SP), National Institute of Standards and Technology, Gaithersburg, MD, [online], (Accessed July 19, 2024)


If you have any questions about this publication or are having problems accessing it, please contact

Created July 22, 2013, Updated May 4, 2021