International Effort To Reduce Ransomware Attacks

Uploaded on 2021-10-15 in TECHNOLOGY--Resilience, GOVERNMENT-National, FREE TO VIEW

The US Government is putting together a 30-country meeting this October to try improve the global response to ransomware attacks that directly affect economic and national security, following a recent statement from President Biden. The goal of the alliance will be "to accelerate our cooperation in combating cyber crime, improving law enforcement collaboration, stemming the illicit use of crypto-currency, and engaging on these issues diplomatically."

The announcement follows a series of ransomware attacks on US critical infrastructure firms in recent months, including one that forced major US fuel supplier Colonial Pipeline to shut down for days.

Ransomware is a type of malware where one party threatens to publish or block access to the victim’s data unless they receive a ransom. Some ransomware attacks can be easily undone by an IT professional. But cryptovirology is much harder to reverse as it involves encrypting the victim’s data. Without a decryption key, the data may be lost.

Ransomware can pose a hefty danger to global cyber security as it scrambles the target organisation's data with encryption. The criminals leave instructions on infected computers for negotiating ransom payments. Once paid, they provide decryption keys for unlocking those files. 

"Cyber threats affect the lives and livelihoods of American families and businesses," national security adviser Jake Sullivan said in a statement to CNN. Sullivan said the administration would "continue to build on our whole-of-government effort to deter and disrupt cyber attacks." An online session hosted by the White House National Security Council will also be aimed at "improving law enforcement collaboration" on issues like "the illicit use of crypto currency," Biden said in a statement.

The first meeting of the multilateral initiative will be held virtually. It's part of a recurring effort to cut off revenue for ransomware groups and figure out ways to prosecute them, according to the White House. In bolstering US cyber security, "the Federal government needs the partnership of every American and every American company in these efforts," Biden added. 

Recently Biden asked Russian President Vladimir Putin to crack down on cyber criminals operating from Russian soil, but many US officials are skeptical of Moscow's willingness to do so. After a brief period of quiet from some ransomware groups following the Biden-Putin meeting, hackers have claimed multiple US companies as victims in recent weeks. 

US officials have looked for ways to slow down the cyber criminals that do not rely on Russian government cooperation. The Treasury Department last month imposed sanctions on a crypto-currency exchange that US officials accused of doing business with hackers behind eight types of ransomware. One White House official said they are particularly eager to address "the misuse of virtual currency to launder ransom payments" and intend to "investigate and prosecute ransomware criminals," many who are anonymous and attack institutions in other countries.

Reuters:      Bloomberg:     Fox:       CNN:      Republic World

You Might Also Read: 

US Cyber Security Chiefs Support Mandatory Incident Reporting:

 

« British National Cyber Force Campus
Protecting Your Business Data Using Fake Information »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

QinetiQ

QinetiQ

QinetiQ is one of the world's leading defence technology and security companies. Areas of activity include air, land, sea and space systems, weapons, robotics, C4ISR and cyber security.

BSI Group

BSI Group

BSI is the business standards company that equips businesses with the necessary solutions to turn standards of best practice into habits of excellence

Versasec

Versasec

Versasec is a leader in identity and access management, providing customers with security solutions for managing digital identities.

Cellebrite

Cellebrite

Cellebrite delivers comprehensive solutions for mobile data forensics and mobile lifecycle management.

FIDO Alliance

FIDO Alliance

FIDO Alliance is a non-profit organization formed to address the lack of interoperability among strong authentication devices.

CamCERT

CamCERT

CamCERT is the national Computer Emergency Response Team for Cambodia.

Utility Cyber Security Forum

Utility Cyber Security Forum

The Utility Cyber Security Forum offers a focused venue in which utility executives can network one-on-one with colleagues facing issues in protecting against cyber attacks.

FifthDomain

FifthDomain

We are a specialist cyber security education and training company tackling the global cyber security skills shortage.

InferSight

InferSight

InferSight can help you design an architecture that takes into account security, performance, availability, functionality, resiliency and future capacity to avoid technological lock in and limitations

Antares NetlogiX

Antares NetlogiX

Antares Netlogix are a leading Austrian service provider for IT security, critical infrastructures and managed security services.

Association of anti Virus Asia Researchers (AVAR)

Association of anti Virus Asia Researchers (AVAR)

AVAR's mission is to prevent the spread of and damage caused by malicious software, and to develop cooperative relationships among anti-malware experts in Asia.

Cloudflare

Cloudflare

Cloudflare is a global network designed to make everything you connect to the Internet secure, private, fast, and reliable.

Aembit

Aembit

Aembit is the Identity Platform that lets DevOps and Security manage, enforce, and audit access between federated workloads

Coastline Cybersecurity

Coastline Cybersecurity

Coastline Cyber is a cybersecurity consulting firm dedicated to helping organizations strengthen their security posture by reducing risks, mitigating threats, and protecting against attacks.

Aura Information Security

Aura Information Security

Aura Information Security consists of a team of highly-skilled and renowned information security professionals spanning Australia and New Zealand.

Cork

Cork

Cork is a purpose-built cyber warranty company for managed service providers (MSPs) serving small businesses (SMBs) and the software solutions they manage.