Former negotiator voices fear as ransomware groups issue threats of violent action
In today's digital age, ransomware attacks have become a significant threat to businesses worldwide. A recent survey of 1500 security and IT professionals reveals that physical violence against employees and their families is not an uncommon tactic used by ransomware gangs.
Jeff Wichman, Semperis' director of breach preparedness and response, expressed concern over these threats. Before leading the incident response team at Semperis, Wichman worked as a professional ransomware negotiator and has firsthand experience with the tactics used by these cybercriminals.
According to Wichman, the threats would include details about the executives' personal lives, such as their internet surfing traffic and where their kids go to school. Extortionists would make threats against the family members of executives whose companies were infected with ransomware.
Physical threats from attackers are quite common, occurring in about 40% of ransomware attacks globally. US companies face physical threats in 46% of these incidents, while German companies experience them 44% of the time. These threats typically involve intimidation or threats of physical harm toward executives if ransom demands are not met.
The potential consequences for victims extend beyond digital disruption. Attackers sometimes escalate tactics by threatening regulatory complaints if demands are unmet, adding legal and reputational risks. As many as 58% of US companies reported such regulatory extortion threats.
Ransomware attacks on critical infrastructure and healthcare services present grave risks, including disruption of essential services and threats to public safety. These attacks could potentially cause life-threatening impacts and economic instability.
While physical threats are frequent, some reports caution that claims of physical consequences related to cyberattacks can sometimes be exaggerated or mischaracterized, meaning actual physical attacks are less common than threats themselves.
The survey also revealed that digital intruders still use traditional threats like system lockouts (52%) and data destruction (63%). Despite this, the increasing use of physical threats is a concerning development in the ransomware landscape.
In summary, physical threats are a significant and rising tactic in ransomware attacks, especially in certain countries. Victims face not only immediate safety risks to personnel but also broader operational, regulatory, and reputational consequences. Companies must be vigilant and prepared to respond effectively to these evolving threats.
[1] Source: Cybersecurity Dive
[2] Source: The Hill
[3] Source: Security Magazine
[4] Source: CyberScoop
[5] Source: Help Net Security
- In light of the escalating tactics by ransomware gangs, AI technology could play a crucial role in enhancing cybersecurity measures, especially in predicting and mitigating physical threats against employees and their families.
- The general-news sphere has been abuzz with reports of ransomware attacks leading to crime-and-justice implications, with executives facing threats against their family members and physical violence.
- As ransomware crimes evolve, incorporating AI in cybersecurity strategies could help address the issue of regulatory extortion threats, a concerning trend that has seen 58% of US companies reporting such incidents.
