What a shame https://apple.news/AWgbSAlEDT2elZhI2eV2fuw

and - would love your take on how best to handle ransomware. Do you give into demands?

18 views
2 comments
0 upvotes
Related Tags
Anonymous Author
and - would love your take on how best to handle ransomware. Do you give into demands?
1 upvotes
Anonymous Author
There has been much written on whether an organization should or should not pay the ransom to the threat actor(s). The FBI advises that the ransom should not be paid, although I tend to agree with that position, depending on the specific scenario, the decision to pay or not pay may not be that clear cut.    It's also important to consider, once the ransom is paid, the decryption tool may not actually work, or if it does work it may not allow ALL of the data to be recovered.  There are also scenarios where private data is exfiltrated and still held for ransom if an organization does recover data from its backups and other offsite long-term archives.    I think there needs to be more discussion around requirements for companies to disclose ransom payments, and or to notify key parties.    The bottom line, proactive prevention is still an organization's best defense. Organizations need to be more prepared by having and keeping up-to-date documents such as incident response plans, business continuity plans,  and disaster recovery plans. A lot of this stuff isn't new, but it's important and organizations need to find the time and or budget to make sure these areas are covered. As I said prior, these documents, plans, and processes need to be kept up to date but also to test and make sure what was developed works and key stakeholders. know and understand their unique role from the start, during, and after an event such as ransomware.      If you are a victim of ransomware:   Contact your local FBI field office to request assistance, or submit a tip online. https://www.fbi.gov/contact-us/field-offices https://tips.fbi.gov/    File a report with the FBI’s Internet Crime Complaint Center (IC3).  https://www.fbi.gov/ic3    Additional information: https://attack.mitre.org/mitigations/enterprise/ https://www.ic3.gov/Content/PDF/Ransomware_Fact_Sheet.pdf https://www.fbi.gov/scams-and-safety/common-scams-and-crimes/ransomware
2 upvotes