Agnostic.com

1 0

Ransomware Victims That Pay Up Could Incur Steep Fines from Uncle Sam

[krebsonsecurity.com]

FearlessFly 9 Oct 1
Share

Enjoy being online again!

Welcome to the community of good people who base their values on evidence and appreciate civil discourse - the social network you will enjoy.

Create your free account

1 comment

Feel free to reply to any comment by clicking the "Reply" button.

1

It's like negotiating with terrorists. I think these fines are piling on a company that's already been victimized by the ransom.

The companies you comment about typically haven't invested in the time/money/system-updates (a lot less than the ransom demands) that would have kept there systems secure.

However, the article is actually about :

“companies that facilitate ransomware payments to cyber actors on behalf of victims, including financial institutions, cyber insurance firms, and companies involved in digital forensics and incident response, not only encourage future ransomware payment demands but also may risk violating OFAC regulations.”

@FearlessFly The fines are not because they didn't take necessary precautions, which they should have. The fines are for giving in to ransom demands from sanctioned entities, if I'm not mistaken.

@barjoe To be clear, the fines are not for the 'ransomed' companies, they are for the entities that "facilitate ransomware payments to cyber actors on behalf of victims"

@FearlessFly The victim companies hired security firms who paid ransom and will be fined. The ransomwear hackers are obviously subject to prosecution if they ever catch them.

You can include a link to this post in your posts and comments by including the text q:539649
Agnostic does not evaluate or guarantee the accuracy of any content. Read full disclaimer.