First published in 2010, an updated version of the mitigation strategies was published in February 2017. Initially aimed at government organizations, the strategies contained are equally valuable for commercial organizations seeking to protect their networks and users.