News, tips, advice, support for Windows, Office, PCs & more
Home icon Home icon Home icon Email icon RSS icon

We're community supported and proud of it!

  • Ransomware: getting to a consensus approach is still work in progress.

    Home Forums Outside the box Rants Ransomware: getting to a consensus approach is still work in progress.

    • This topic has 2 replies, 2 voices, and was last updated 1 month ago.
    Viewing 1 reply thread
    • Author
      Posts
      • #2372660
        OscarCP
        AskWoody Plus

        More ransomware commentary and news, this time from the Associated Press:

        https://apnews.com/article/joe-biden-europe-government-and-politics-technology-business-3b81e8116c42439566040a052617ad55

        Excerpts:

        Lior Div, CEO of Boston-based Cybereason, considers them digital-age terrorists. “It is terrorism in a different form, a very modern one.

        A 2015 British law prohibits U.K.-based insurance firms from reimbursing companies for the payment of terrorism ransoms, a model some believe should be applied universally to ransomware payments.”

        “Ultimately, the terrorists stopped kidnapping people because they realized that they weren’t going to get paid,” said Adrian Nish, threat intelligence chief at BAE Systems.”

        A decryption key is not a magic wand or switch that can suddenly reverse the damage,” said Brian Honan, a top Irish cybersecurity consultant. Every machine recovered must be tested to ensure it’s infection-free.

        But paying doesn’t guarantee anything near full recovery. On average, ransom-payers got back just 65% of the encrypted data, leaving more than a third inaccessible, while 29% said they got only half of the data back, the cybersecurity firm Sophos found in a survey of 5,400 IT decision-makers from 30 countries.

        Meanwhile in the USA …

        Recognizing a lack of support for a ransom ban, Senate Intelligence Committee Chairman Mark Warner, D-Va., and other lawmakers want at least to compel greater transparency from ransomware victims, who often don’t report attacks.

        They are drafting a bill to make the reporting of breaches and ransom payments mandatory. They would need to be reported within 24 hours of detection, with the executive branch deciding on a case-by-case basis whether to make the information public.

        But that won’t protect unprepared victims from potentially going bankrupt if they don’t pay. For that, various proposals have been put forward to provide financial assistance.

        The Senate this month approved legislation that would establish a special cyber response and recovery fund to provide direct support to the most vulnerable private and public organizations hit by major cyberattacks and breaches.

        Windows 7 Professional, SP1, x64 Group W (ex B) & macOS Mojave + Linux (Mint)

        • This topic was modified 1 month ago by OscarCP.
      • #2372680
        b
        AskWoody MVP

        The Senate this month approved legislation that would establish a special cyber response and recovery fund to provide direct support to the most vulnerable private and public organizations hit by major cyberattacks and breaches.“

        Insurance provided by taxpayers and “most vulnerable” decided by government.

        A great deal for lazy corporations and corrupt politicians; everyone else, not so much.

        Windows 10 Pro version 21H2 build 19044.1149 + Microsoft 365 (group ASAP)

        • #2372705
          OscarCP
          AskWoody Plus

          I think I’ll first wait to see what that legislation is like, assuming it ever gets approved and signed into law.

          Windows 7 Professional, SP1, x64 Group W (ex B) & macOS Mojave + Linux (Mint)

    Viewing 1 reply thread

    Please follow the -Lounge Rules- no personal attacks, no swearing, no politics or religion.

    Reply To: Ransomware: getting to a consensus approach is still work in progress.

    You can use BBCodes to format your content.
    Your account can't use Advanced BBCodes, they will be stripped before saving.