• Menu
  • Skip to main content
  • Skip to primary sidebar

The Cyber Security News

Latest Cyber Security News

Header Right

  • Latest News
  • Vulnerabilities
  • Cloud Services
Cyber Security News

Senate Report: US Government Lacks Comprehensive Data on Ransomware

You are here: Home / General Cyber Security News / Senate Report: US Government Lacks Comprehensive Data on Ransomware
May 24, 2022

The US govt lacks thorough facts on ransomware attacks, together with how substantially is shed in payments, in accordance to a new report by the United States Senate Committee on Homeland Security & Governmental Affairs.

The report offered the conclusions of a 10-thirty day period investigation into the growing danger of ransomware. It cited FBI figures demonstrating that the agency had gained 3729 ransomware issues with modified losses of more than $49.2m. Even so, even these figures “likely considerably underestimate the real number of attacks and ransom payments made by victims and related losses.”

Following numerous interviews with federal legislation enforcement and regulatory organizations, in addition to non-public firms that assist ransomware victims with extortion needs, the report concluded that there is a absence of information on this surging attack vector at the govt degree. Changing this is vital because “more info is wanted to improved fully grasp and overcome these attacks.” In addition, it pointed out that this information and facts will assist the investigation and prosecution of ransomware threat actors. The committee also emphasised the significant menace ransomware poses to US nationwide security, as demonstrated by the Colonial Pipeline incident last calendar year.

✔ Approved Seller From Our Partners
Malwarebytes Premium 2022

Protect yourself against all threads using Malwarebytes. Get Malwarebytes Premium with 60% discount from a Malwarebytes official seller SerialCart® (Limited Offer).

➤ Activate Your Coupon Code


However, “data reporting and assortment on ransomware attacks and payments is fragmented and incomplete,” in accordance to the Committee’s report. This is partly because of to two separate federal agencies – the Cybersecurity and Infrastructure Security Company (CISA) and the FBI – hosting distinct sites that every single claim to host the government’s a person-halt site for reporting ransomware attacks. Even though the companies point out they share facts with each and every other, “ransomware incident response corporations questioned the efficiency of this sort of interaction channels’ impact on helping victims of an attack.”

The investigation also highlighted the increasing job of cryptocurrencies, significantly Bitcoin, in ransomware attacks, which “has turn into a in the vicinity of-common form of ransom payment.” The authors famous that the decentralized nature of these currencies tends to make it challenging for legislation enforcement to establish and arrest the perpetrators, notably foreign-based mostly groups. Nevertheless, the FBI’s recovery of over fifty percent the ransom paid out by Colonial Pipeline showed that “with obtain to the ideal info, legislation enforcement can leverage cryptocurrency’s unique functions as nicely as other investigative strategies to track down cyber-criminals and recover stolen resources.”

The committee consequently advised the prioritization of information collection on ransomware attacks as a important indicates of addressing greater countrywide security threats. This features quickly utilizing the Cyber Incident Reporting for Critical Infrastructure Act, signed into regulation this calendar year by President Joe Biden.

Commenting on the findings, Senator Gary Peters, chairman of the Senate Homeland Security and Governmental Affairs Committee, said: “Cryptocurrencies – which allow criminals to swiftly extort huge sums of income, can be anonymized, and do not have continually enforced compliance with restrictions, primarily for overseas-dependent attackers – have additional enabled cyber-criminals to dedicate disruptive ransomware attacks that threaten our national and economic security.

“My report displays that the federal govt lacks the essential data to prevent and avert these attacks and maintain international adversaries and cyber-criminals accountable for perpetrating them. My monthly bill that was not too long ago signed into legislation to have to have critical infrastructure to report cyber-attacks and ransomware payments will be a important phase to making sure our governing administration has greater knowledge to understand the scope of this menace, disrupt the incentive digital currencies deliver for cyber-criminals to commit attacks, and support victims promptly get well after breaches.”


Some areas of this short article are sourced from:
www.infosecurity-journal.com

Previous Post: «popular pypi package 'ctx' and php library 'phpass' hijacked to Popular PyPI Package ‘ctx’ and PHP Library ‘phpass’ Hijacked to Steal AWS Keys

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Primary Sidebar

Report This Article

Recent Posts

  • Senate Report: US Government Lacks Comprehensive Data on Ransomware
  • Popular PyPI Package ‘ctx’ and PHP Library ‘phpass’ Hijacked to Steal AWS Keys
  • Fronton IOT Botnet Packs Disinformation Punch
  • SIM-based Authentication Aims to Transform Device Binding Security to End Phishing
  • New Chaos Ransomware Builder Variant “Yashma” Discovered in the Wild
  • Open source packages with millions of installs hacked to harvest AWS credentials
  • DOE ‌‌‌‌‌‌‌‌‌‌‌‌‌‌‌funds‌ ‌development of Qunnect’s Quantum Repeater
  • Cabinet Office Reports 800 Missing Electronic Devices in Three Years
  • Malware Analysis: Trickbot
  • Conti Ransomware Operation Shut Down After Splitting into Smaller Groups

Copyright © TheCyberSecurity.News, All Rights Reserved.