Can the UK ban ransomware payments?
Attempts to cut off ransomware group profits could instead harm businesses
Ransomware payments could soon be a thing of the past in the UK – at least that’s the hope of new controls and mandatory reporting requirements to prevent ransomware from inflicting damage on UK businesses.
Under government proposals, public bodies and operators of critical national infrastructure would be banned from paying up when they’re hit by ransomware – and other businesses would have to be transparent when they decide to cough up the cash.
But can we really put a lid on ransomware? And might the new rules have unintended negative consequences?
In this episode, Jane and Rory discuss the UK government’s new ransomware payment ban and what it could mean for the sector.
Highlights
"You can see why ransomware is is such a lucrative operation for these threat groups, because for some businesses, there's very little argument. You know, 'okay, we plan for this, here's the cash, can we have our data back?.' It's a pretty seamless operation."
"There's been a mixed response from the cybersecurity industry. So some have praised it as a bit of a no brainer, others have warned that it really doesn't do very much to defend businesses, as we've been discussing. Jonathan Wright, who is a partner in the UK Data privacy and cybersecurity practice at Hunton, Andrews Kurth LLP law firm, said that the ban risks punishing the victims."
"We are always covering cases of ransomware causing serious damage to businesses and we recently, in fact, published a piece that said that cyber attacks cost UK businesses alone £64 billion a year. That's including ransom payments, but also staff overtime, lost business and all the other associated costs. So it's clear that it has a major impact on the economy."
Footnotes
- Nearly half of MSPs admit to having a ransomware kitty
- A ransomware payments ban risks criminalizing victims
- The end of ransomware payments: How businesses fit into the fight
- Building ransomware resilience to avoid paying out
- UK government officials consider banning ransomware payments
Subscribe
- Subscribe to The IT Pro Podcast on Apple Podcasts
- Subscribe to The IT Pro Podcast on Spotify
- Subscribe to the IT Pro newsletter
- Join us on LinkedIn
-
IT leaders are being stung by "unexpected" AI costsNews The growing costs associated with AI are hitting organizations large and small
-
'Botsitting' is destroying productivity as workers spend nearly a full day each week making AI 'usable'News While workers are reporting productivity improvements, ‘botsitting’ means these are often negated
-
Why cyber resilience is business criticalSponsored Podcast Leaders need to focus on resilience over prevention, in collaboration with a trusted partner
-
The race to become quantum-safeITPro Podcast Efforts to run AI in trusted regions can clash with access to frontier model updates, business scalability
-
March rundown: RSAC warnings and Arm's AGI CPUITPro Podcast AI agents are complicating the jobs of cyber professionals, with broken permissions and a lack of oversight posing major risks
-
SPECIAL EDITION: How AI is changing educationSponsored Podcast With the right support and communication, educational organizations can use AI to empower teachers and students alike
-
Tomorrow's fraud techniquesITPro Podcast Leaders need to proactive as attackers launch more consistent, sophisticated attacks
-
Redefining risk managementSponsored Podcast With a Risk Operations Center (ROC), leaders can proactively crack down on cyber risks instead of simply reacting to them
