International Effort To Reduce Ransomware Attacks

Uploaded on 2021-10-15 in TECHNOLOGY--Resilience, GOVERNMENT-National, FREE TO VIEW

The US Government is putting together a 30-country meeting this October to try improve the global response to ransomware attacks that directly affect economic and national security, following a recent statement from President Biden. The goal of the alliance will be "to accelerate our cooperation in combating cyber crime, improving law enforcement collaboration, stemming the illicit use of crypto-currency, and engaging on these issues diplomatically."

The announcement follows a series of ransomware attacks on US critical infrastructure firms in recent months, including one that forced major US fuel supplier Colonial Pipeline to shut down for days.

Ransomware is a type of malware where one party threatens to publish or block access to the victim’s data unless they receive a ransom. Some ransomware attacks can be easily undone by an IT professional. But cryptovirology is much harder to reverse as it involves encrypting the victim’s data. Without a decryption key, the data may be lost.

Ransomware can pose a hefty danger to global cyber security as it scrambles the target organisation's data with encryption. The criminals leave instructions on infected computers for negotiating ransom payments. Once paid, they provide decryption keys for unlocking those files. 

"Cyber threats affect the lives and livelihoods of American families and businesses," national security adviser Jake Sullivan said in a statement to CNN. Sullivan said the administration would "continue to build on our whole-of-government effort to deter and disrupt cyber attacks." An online session hosted by the White House National Security Council will also be aimed at "improving law enforcement collaboration" on issues like "the illicit use of crypto currency," Biden said in a statement.

The first meeting of the multilateral initiative will be held virtually. It's part of a recurring effort to cut off revenue for ransomware groups and figure out ways to prosecute them, according to the White House. In bolstering US cyber security, "the Federal government needs the partnership of every American and every American company in these efforts," Biden added. 

Recently Biden asked Russian President Vladimir Putin to crack down on cyber criminals operating from Russian soil, but many US officials are skeptical of Moscow's willingness to do so. After a brief period of quiet from some ransomware groups following the Biden-Putin meeting, hackers have claimed multiple US companies as victims in recent weeks. 

US officials have looked for ways to slow down the cyber criminals that do not rely on Russian government cooperation. The Treasury Department last month imposed sanctions on a crypto-currency exchange that US officials accused of doing business with hackers behind eight types of ransomware. One White House official said they are particularly eager to address "the misuse of virtual currency to launder ransom payments" and intend to "investigate and prosecute ransomware criminals," many who are anonymous and attack institutions in other countries.

Reuters:      Bloomberg:     Fox:       CNN:      Republic World

You Might Also Read: 

US Cyber Security Chiefs Support Mandatory Incident Reporting:

 

« British National Cyber Force Campus
Protecting Your Business Data Using Fake Information »

CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Cobalt Strike

Cobalt Strike

Cobalt Strike is penetration testing software designed to execute targeted attacks.

Deep Instinct

Deep Instinct

Deep Instinct provides comprehensive defense that is designed to protect against the most evasive unknown malware in real-time, across an organization’s endpoints, servers, and mobile devices.

Preempt Security

Preempt Security

The Preempt Platform delivers adaptive threat prevention that continuously preempts threats based on identity, behavior and risk.

Cog Systems

Cog Systems

Cog Systems offer an embedded solution built on modularity, proactive security, trustworthiness, and adaptability to enable highly secure connected devices.

LSoft Technologies

LSoft Technologies

LSoft Technologies is a leader in data recovery software technologies.

Open Connectivity Foundation (OCF)

Open Connectivity Foundation (OCF)

OCF is dedicated to ensuring secure interoperability ensuring secure interoperability of IoT for consumers, businesses and industries.

ProcessUnity

ProcessUnity

ProcessUnity is a leading provider of Third-Party Risk Management software, helping companies remediate risks posed by third-party service providers.

Belcan

Belcan

Belcan is a global supplier of engineering, manufacturing & supply chain, workforce and government IT solutions to customers in the aerospace, defense, automotive, industrial, and private sector.

ImmuniWeb

ImmuniWeb

We Simplify, Accelerate and Reduce Costs of Security Testing, Protection and Compliance.

Team Secure

Team Secure

Team Secure provide Enterprise-grade Cyber Security consultancy, managed security services and cyber security staffing services.

SolidRun

SolidRun

SolidRun is a leading provider of computing and network technology designed to streamline the deployment of edge computing infrastructure and support embedded and IoT markets.

Google Cloud

Google Cloud

Accelerate your digital transformation. Whether your business is early in its journey or well on its way to digital transformation, Google Cloud can help solve your toughest challenges.

Zluri

Zluri

Zluri is a cloud-native SaaSOps platform enabling modern enterprises with SaaS Management and Identity Governance.

COGITANDA Dataprotect

COGITANDA Dataprotect

COGITANDA are a group of companies focused on dealing with cyber risks, managing them and insuring them.

Cyber Brain Academy

Cyber Brain Academy

At Cyber Brain Academy, our mission is to provide high-quality IT certification training for the cyber security workforce.

SteelGate

SteelGate

SteelGate’s core capabilities are centered around architecture design and engineering of network, systems, and cybersecurity solutions.