Kaila Philo reports that in the wake of some big ransomware attacks, DOJ has issued new guidance. Deputy Attorney General Lisa Monaco released an internal memo late Thursday detailing new guidance on how to tackle cyber-attacks as a result. These recent ransomware attacks “underscore the growing threat that ransomware and digital extortion pose to the Nation, and…
Category: Commentaries and Analyses
Diverse six-justice majority rejects broad reading of computer-fraud law
Ronald Mann writes: The Supreme Court’s decision on Thursday in Van Buren v. United States provides the court’s first serious look at one of the most important criminal statutes involving computer-related crime, the federal Computer Fraud and Abuse Act. Justice Amy Coney Barrett’s opinion for a majority 0f six firmly rejected the broad reading of that statute that the…
IBM gives grants to some k-12 districts to harden security against ransomware attacks
Charlie Osborne reports: All United States public K-12 school districts were eligible to apply for the grants, designed to help school officials “proactively prepare for and respond to cyberattacks.” The grants, worth $500,000 each, have been awarded to school districts in Florida (Brevard Public Schools), New York (Poughkeepsie City School District), Georgia (KIPP Metro Atlanta Schools),…
Claiming to be the “new generation,” threat actors declare, “No more discounts or long negotiations”
This week saw the emergence of a new group calling themself “Pay or Grief.” Or maybe they call themselves “Grief” or “Grief_List.” I really am not sure because they haven’t responded to simple questions like “What do we call you?” In any event, DataBreaches.net noted two of their attacks and now SuspectFile was able to…
How to Negotiate with Ransomware Hackers
Rachel Monroe has an interesting profile of a ransom negotiator in The New Yorker. But the piece also provides an answer to a puzzling claim in a blog post by REvil that referred to fraudulent middlemen. When the negotiator hired by a victim entered the chat, they discovered that someone had already been negotiating with…
Ethical disclosures are being ignored: an unchecked security crisis
Ron Nahamias, Cyberpion co-founder and CBO, has a piece in Security Magazine that includes a topic near and dear to my heart — companies that do not provide a way to notify them of a security breach, leak, or vulnerability. He writes, in part: Sometimes the burying of the head in the sand, even if…