Imagine this: Someone from your public relations team reaches out to you saying they have an email from a reporter asking if your organization was the victim of a ransomware attack. “Of course not,” you respond, “we would absolutely know if we were hit by ransomware!” The public relations person then tells you that the […]
This blog post started as a Twitter thread, in case you were wondering if anything good ever came from Twitter. Ransomware attacks are complex and involve a lot of different aspects of security, which is why defenders need to take a “boxing match” approach to stopping ransomware attacks. This means that, like boxing, you’re always […]
Back in April, the North Carolina State Legislature became the first state to approve a law banning ransomware payments by government agencies. The law, which was part of the Current Operations Appropriations Act of 2021, S.L. 2021-180 (PDF), includes the following language: (a) No State agency or local government entity shall submit payment or otherwise […]
May 8, 2021 was the day my stepdaughter graduated from medical school. As you can image, it was one of the most important days in my wife’s life, and I was under strict orders: No work this weekend, we are here to celebrate the graduation and nothing else. Things did not work out as planned. […]
The ransomware headlines in 2022 revolve around the surge in ransomware attacks. Of course, those were the headlines in 2021, 2020, 2019, and so on. Don’t misunderstand—those headlines were not wrong, as ransomware attacks have continued to rise for several years and show no sign of slowing down. In fact, we seem to be entering […]
For several years, defenders and law enforcement have gone to great pains to warn people that ransomware is a global problem. While the organizers of many of the largest cybercriminal ransomware groups are located in Russia, the affiliates of these ransomware groups—the ones who carry out most of the attacks—live in countries around the world. […]
