Chapter 57 – FBI Guidance: How to Respond to Ransomware

Holding companies hostage, whether by ransomware or by collusion of personnel in critical delivery services is not new. However, they are crimes and need to addressed. It does not seem to me that there is enough aggressive prosecution. Even seven years ago I experienced just how difficult it was to get law enforcement involved.

Almost all of the law enforcement agencies I talked to felt like some other agency had jurisdiction. If the attack came from a place in New Jersey, our law enforcement in Beaverton Oregon wanted the NJ state police or the FBI to take the case on (interstate commerce and CFAA violation). And in many cases the law enforcement agencies tried very hard to not take on the case. The US Attorneys office even now will defer crimes causing hundreds of thousands of dollars in damages if there minimally appears to be a civil remedy. By civil remedy I mean lawsuit. And if you get hurt too much to file a lawsuit? Then you just die and no law enforcement agency picks up the case. That’s crazy but true.

The reason these criminals are getting away with this is there is still not enough skilled focus by law enforcement.

Until next time.

Business Cyber Risk Blog

FBISpoiler Alert: According to the article below, in a recent podcast the FBI “warned against paying ransoms” and doesn’t like to see companies pay the ransom because, the old law of supply and demand just means that ransomware is more profitable and, therefore, we see more of it.

The reality is, however, once hit with ransomware, unless companies have adequate backup capabilities, they have little choice but to pay: “between 60 and 70 percent of businesses targeted by a ransomware attack are paying their attackers to have files and systems unencrypted. ‘They are paying ransom in order to maintain business continuity.'”

Read the full article: Ransomware Epidemic Prompts FBI Guidance – DataBreachToday

View original post


Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )


Connecting to %s