[BreachExchange] Report: US$590mil in ransomware payments reported to US in 2021 as attacks surge

[Terrell Byrd]

https://www.thestar.com.my/tech/tech-news/2021/10/18/report-us590mil-in-ransomware-payments-reported-to-us-in-2021-as-attacks-surge

WASHINGTON: New data out on Oct 15 showed US$590mil (RM2.45bil) in
ransomware-related payments were reported to US authorities in the first
half of 2021, setting a pace to beat totals for the previous decade as
cyber-extortion booms.

According to the US Treasury Department report, the figure is 42% higher
than the amount reported by financial institutions for all of 2020.

“If current trends continue, (reports) filed in 2021 are projected to have
a higher ransomware-related transaction value than (reports) filed in the
previous 10 years combined,” Treasury said.

The crime involves breaking into an entity’s networks to encrypt its data,
then demanding a ransom, typically paid via cryptocurrency in exchange for
the digital key to unlock it.

Washington has sought to crack down on a sharp rise in attacks, including
issuing its first sanctions against an online exchange where illicit
operators have allegedly swapped cryptocurrency for cash.

Recent assaults on a major US oil pipeline, a meatpacking company and the
Microsoft Exchange email system drew attention to the vulnerability of US
infrastructure to digital pirates.

The report, based on the suspicious activity alerts that financial firms
have to file, noted it was unclear if the jump represented increased
awareness of the cybercrime.

Threat to critical infrastructure

“This trend potentially reflects the increasing overall prevalence of
ransomware-related incidents as well as improved detection and reporting,”
Treasury said.

The victims of the attacks were not identified in the report, which noted
some of the apparent ransoms were paid before January 2021.

The new data on the scale of payments related to hacks came after more than
two dozen nations resolved to collectively fight ransomware during a
Washington-led summit.

The United States gathered the countries – with the notable exception of
Russia – to unify and boost efforts to fight a cybercrime that is
transnational, on the rise and potentially devastating.

Stronger digital security and offline backups as well as collectively
targeting the laundering of the attacks’ proceeds were identified as
crucial steps in the fight.

“We will consider all national tools available in taking action against
those responsible for ransomware operations threatening critical
infrastructure and public safety,” the nations said in a joint statement.

The United Kingdom, Australia, India, Japan, France, Germany, South Korea,
the European Union, Israel, Kenya, Mexico, and others were among the
roughly 30 that joined in the virtual gathering that ran from Oct 13 to 14.

During the summit nations recounted their agonising experiences with
cyber-extortion, including a digital “disaster” declaration in Germany and
Israel even announcing a blitz was underway against a major hospital. – AFP
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.riskbasedsecurity.com/pipermail/breachexchange/attachments/20211018/8474ddd2/attachment.html>