This week, the US is organizing an international summit where participants will discuss countering the online ransomware threat. Russia is notably absent from the list of attendees.
The meeting, organized by the National Security Council, will bring over 30 partners together to discuss how to counter the ransomware threat. Participants range from Australia, Canada, the EU, the United Kingdom to Estonia, Nigeria, and Bulgaria.
The virtual summit will address four topics: How to disrupt ransomware actors and infrastructure, how to improve network resilience to attacks, how to change the financial systems that support ransomware, and how to increase international cooperation to fight this growing crime model.
Four key partners will lead the event: India will lead and organize discussions around resilience; Australia will lead the session on disruption; the UK will discuss the issue of virtual currency; and Germany will focus on diplomacy.
That focus on international diplomacy is notable, given Russia's absence from the event. President Biden discussed ransomware at a summit with Russian President Vladimir Putin in June, warning him that he would not tolerate cyber attacks on US infrastructure from Russia.
A senior administration official said that Russia was not participating for a range of reasons.
RELATED RESOURCE
The best defence against ransomware
How ransomware is evolving and how to defend against it
"We’ve seen some steps by the Russian government and are looking to see follow-up actions. And broader international cooperation is an important line of effort because these are transnational criminal organizations and they leverage global infrastructure money laundering networks to carry out their attacks," they said. The US also communicates directly with Russia on ransomware issues via a US-Kremlin Experts Group, they added.
Ransomware payouts have nearly doubled in the last year. The US has suffered several high-profile attacks, including a successful assault on Colonial Pipeline that prompted authorities to order better security on US pipelines.
-
US Senator calls for Microsoft to be investigated over ‘gross cybersecurity negligence’News Ron Wyden, a Democratic senator from Oregon, has written to the chair of the FTC calling for an investigation into Microsoft's cyber practices.
-
LNER warns customers to remain vigilant after personal data exposed in cyber attackNews LNER has warned customers to remain vigilant for social engineering attacks after a cyber attack on the rail operator exposed personal data.
-
Prolific ransomware operator added to Europe’s Most Wanted list as US dangles $10 million rewardNews The US Department of Justice is offering a reward of up to $10 million for information leading to the arrest of Volodymyr Viktorovych Tymoshchuk, an alleged ransomware criminal.
-
Jaguar Land Rover “did the right thing” shutting down systems to thwart cyber attackNews The attack on Jaguar Land Rover highlights the growing attractiveness of the automotive sector
-
Ransomware attack on IT supplier disrupts hundreds of Swedish municipalitiesNews The attack on IT systems supplier Miljödata has impacted public sector services across the country
-
A notorious hacker group is ramping up cloud-based ransomware attacksNews The Storm-0501 threat group is refining its tactics, according to Microsoft, shifting away from traditional endpoint-based attacks and toward cloud-based ransomware.
-
Security researchers have just identified what could be the first ‘AI-powered’ ransomware strain – and it uses OpenAI’s gpt-oss-20b modelNews Using OpenAI's gpt-oss:20b model, ‘PromptLock’ generates malicious Lua scripts via the Ollama API.
-
Data I/O shuts down systems in wake of ransomware attack
News Regulatory filings by Data I/O suggest the costs of dealing with the attack could be significant
-
Average ransom payment doubles in a single quarterNews Targeted social engineering and data exfiltration have become the biggest tactics as three major ransomware groups dominate
-
BlackSuit ransomware gang taken down in latest law enforcement sting – but members have already formed a new groupNews The notorious gang has seen its servers taken down and bitcoin seized, but may have morphed into a new group called Chaos
