Skip to main content

Should ransomware payments be illegal?

Web Hosting & Remote IT Support

Ransomware has been becoming an increasingly common problem in recent years for organizations, regardless of size, sector or location. Indeed, Netwrix’s 2024 Hybrid Security Trends Report revealed that malware attacks like ransomware are one the three most common types of security incidents that organizations experienced in the last year. According to the Information Commissioner’s Office report, in 2023 organizations in Britain reported more data breaches due to ransomware attacks than ever before.

In response to this threat, proposals to make ransomware payments illegal have been gaining traction. For example, earlier this year, Ciaran Martin, ex-CEO of the UK National Cyber Security Centre, called for a ransomware payment ban. The reasoning is that if ransomware payments were illegal, organizations would stop making them, so malicious actors would no longer have an incentive to carry out ransomware attacks.

But is this approach really a viable solution to the scourge of ransomware?

The moral imperative in some ransomware situations

Ransomware is clearly different from cases of physical extortion like kidnapping and hostage situations. But a ransomware attack can still pose a serious danger to human lives. Notably, an attack on critical national infrastructure (CNI), such as hospitals and other healthcare facilities, can put patients’ lives at risk. In June 2024, Synnovis, a blood test provider for major London hospitals, fell victim to a ransomware attack that resulted in cancellation or postponing over 1600 operations and outpatient appointments. In such cases, it’s much harder to say that paying the ransom should be prohibited by law.

Moreover, cybercriminals quickly adapt to changing circumstances. If legal limitations are put into effect, threat actors will likely find ways to overcome them quite swiftly. Ultimately, banning ransom payments could push business leaders into further moral conundrums while under pressure.

The possibility of reduced reporting of ransomware incidents

In July the UK Government announced their intention to introduce mandatory reporting of all ransomware incidents as a part of the Cyber Security and Resilience Bill. Thus, the Government prioritized transparency of the ransomware incidents over an attempt to completely ban them.

Indeed, a well-executed ransomware attack can potentially hinder the victim’s business operations to the point of near bankruptcy. Under the proposed new regulations, decision-makers would be expected to report the incident and not pay the ransom. But would they take that path, given that their livelihood, and the livelihood of many others within the organization, hang in the balance? Or might some organizations choose to pay the ransom without informing government agencies of the attack?

We have to remember that the latter option is a viable choice, and it has ramifications beyond the organization that makes it. Not reporting the incident reduces visibility in cybercriminals' activity, which in turn affects the ability of law enforcement and software vendors to take appropriate steps in response. Without all the information, addressing the challenge of ransomware will become much more difficult.

The banking industry experience — a better way forward?

Various risks are inherent in the nature of the banking industry, and the sector has developed ways to mitigate them. For example, years ago, the main threat was a physical bank robbery, so banks reduced cash handling and installed security cameras, alarm systems and, finally, time-lock safes. Adopting the right security measures is still essential for banks to keep their licenses today.

Following this example, governments could create cybersecurity benchmarks and make risk mitigation strategies the norm for other high-risk industries like energy, manufacturing and healthcare. With standards in place, organizations would have appropriate guidance for establishing an efficient strategy against the threat of ransomware.

Additionally, law enforcement worldwide has a crucial role to play when it comes to collaborating to take down ransomware networks. The recent dismantling of the ransomware gang LockBit performed by the National Crime Agency, FBI, and international partners from nine other countries proves the effectiveness of such collaboration. Government institutions from all over the world released a cybersecurity advisory that summarized LockBit’s tools and tactics. That work resulted in the group's attack assets being seized, which has made it difficult for them to operate.

Looking ahead: how to combat the threat of ransomware

Ransomware continues to cause significant damage to organizations worldwide, and it is natural for governments to consider legislation that could help reduce the threat. However, denying victim companies the option of paying a ransom to restore their data and operations is not a practical solution. Instead, organizations must prioritize improving their cybersecurity measures, while government departments should increase their vigilance, assistance and investigations.

We've listed the best small and medium business (SMB) firewall software.

This article was produced as part of TechRadarPro's Expert Insights channel where we feature the best and brightest minds in the technology industry today. The views expressed here are those of the author and are not necessarily those of TechRadarPro or Future plc. If you are interested in contributing find out more here: https://www.techradar.com/news/submit-your-story-to-techradar-pro



via Hosting & Support
Labels:

Comments

Post a Comment

Web Hosting
Remote IT Support
Sites & Socials
Computing Handbook - $9.95

Popular posts from this blog

Microsoft, Google, and Meta have borrowed EV tech for the next big thing in data centers: 1MW watercooled racks

Web Hosting & Remote IT Support Liquid cooling isn't optional anymore, it's the only way to survive AI's thermal onslaught The jump to 400VDC borrows heavily from electric vehicle supply chains and design logic Google’s TPU supercomputers now run at gigawatt scale with 99.999% uptime As demand for artificial intelligence workloads intensifies, the physical infrastructure of data centers is undergoing rapid and radical transformation. The likes of Google, Microsoft, and Meta are now drawing on technologies initially developed for electric vehicles (EVs), particularly 400VDC systems, to address the dual challenges of high-density power delivery and thermal management. The emerging vision is of data center racks capable of delivering up to 1 megawatt of power, paired with liquid cooling systems engineered to manage the resulting heat. Borrowing EV technology for data center evolution The shift to 400VDC power distribution marks a decisive break from legacy sy...
Post a Comment
Read more

When might Captain America: Brave New World be available to stream on Disney Plus?

Web Hosting & Remote IT Support Captain America: Brave New World has landed in theaters worldwide and I bet you're already wondering when it might debut on Disney Plus . Indeed, Marvel's latest movie has just taken flight in cinemas as of today (February 14), but, if you're not planning to watch it on the biggest screen possible, you'll want to know when it could come to Disney's primary streaming service. Right now, I can't tell you when it'll be released on one of the world's best streaming services . However, I can use some of its predecessors' Disney Plus launch dates to predict its arrival. Before you continue scrolling, though, read my Captain America: Brave New World review to see if it's worth watching, plus my Captain America: Brave New World hub and Captain America 4 cast and character guide for details on its cast, story, trailers, and more. When do we think Captain America 4 will debut on Disney Plus? You won...
Post a Comment
Read more