By Liz Jacobs
Ransomware is a type of malicious software cybercriminals use to block you from accessing your own data.[1] Ransomware remains a global cybersecurity threat, as it is a unique kind of attack because it is the one cybercrime that has a high direct return of investment associated with it, by holding the victims’ ransom for financial payment.[2] On a global scale, cybercriminals will continue to focus their efforts on this revenue-generating stream.[3] There is no industry that is exempt from the ransomware threat,[4] and it requires constant focus, assessment, and review to ensure that critical information assets remain safeguarded and protected against it.[5]
Ransomware involves digital extortionists encrypting the files on your system and adding extensions to the attacked data and holding it “hostage” until the demanded ransom is paid.[6] Ransomware enters your network in a variety of ways, the most popular is a download via a spam email attachment.[7] The download then launches the ransomware program that attacks your system.[8]
Ransomware can occur in both a large scheme and a smaller scale. It can occur to individuals, small businesses, large businesses, and even the government. There are two types of ransomware, crypto and locker.[9] Crypton Ransomware targets the data and file systems on the device versus the device itself, so the computer is functional except for the ability to access the encrypted files.[10] Locker ransomware prevents the victim from using the system by locking components or all of the system.[11]
Biden has referenced ransomware to “fit comfortably within a legal framework,” the United States should expressly endorse three interdependent legal positions; to wit, that: “1) Sovereignty is a rule of international law; 2) States must exercise due diligence to terminate hostile cyber operations from their territory; and 3) States may engage in collective countermeasures.” [12]
The United States faces persistent and increasingly sophisticated malicious cyber campaigns that threaten the public sector, the private sector, and ultimately the American people’s security and privacy. There are many different arguments on how to address this nationwide problem. For one, the government and private sector work together to help decrease ransomware attacks by using preventative measures and reporting attacks.[13] This ultimately comes in shape by requiring the private sector to work with the government in reporting ransomware attacks. Biden has signed an executive order meant to strengthen the federal government’s cybersecurity standards for software and technology services it uses, which a senior administration official described as a fundamental shift in the federal government’s approach to cybersecurity incidents away from spot responses and toward trying to prevent them from happening in the first place.[14]
Others argue that the government cannot and should not regulate the private sector to prevent these actions. This argument believes that the government should regulate their own technology and let private businesses control their own. Ultimately, the growth of unregulated cryptocurrency, one official said, is “what’s driven the growth of ransomware.”[15]
As mentioned, ransomware is a type of malicious software cybercriminals use to block you from accessing your own data.[16] Ransomware effects vary depending upon who the victim of the attack is. As a country, we are reliant on technology, so any sort of ransomware attack can make us extremely vulnerable to other sorts of attacks. Overall, the increase in ransomware has been a concern for the United States government and lawmakers. The impact of such legislation and choice of governmental involvement will ultimately affect the country’s safety from such attacks.
[1] How Ransomware Works, Unitrends, https://www.unitrends.com/solutions/ransomware-education#:~:text=Ransomware%20Definition,from%20accessing%20your%20own%20data.&text=During%20this%20time%2C%20the%20cybercriminals,use%20of%20backups%20for%20recovery.
[2] Alicia Hope, A Suspected Ransomware Cyber Attack Shuts Down World’s Fifth Largest Beermaker Molson Coors, CPO Magazine (Mar. 19, 2021), https://www.cpomagazine.com/cyber-security/a-suspected-ransomware-cyber-attack-shuts-down-worlds-fifth-largest-beermaker-molson-coors/.
[3] Id.
[4] Ransomware: The Trust Cost to Business, Cybereason, https://www.cybereason.com/hubfs/dam/collateral/ebooks/Cybereason_Ransomware_Research_2021.pdf.
[5] Alicia Townsend, Watch Out! Cyber Criminals Are Coming, Onelogin (Jan. 5, 2022), https://www.onelogin.com/blog/cybercriminals-coming.
[6] How Ransomware Works, supra note 1.
[7] Id.
[8] Id.
[9] Ransomware Attacks and Types – How Encryption Trojans Differ, Kaspersky, https://www.kaspersky.com/resource-center/threats/ransomware-attacks-and-types.
[10] Id.
[11] Id.
[12] Gary Corn, International Law’s Role in Combating Ransomware, Just Security (Aug. 23, 2021), https://www.justsecurity.org/77845/international-laws-role-in-combating-ransomware/.
[13] Press Release, Treasury Takes Robust Actions to Counter Ransomware, U.S. Dep’t of the Treasury (Sept. 21, 2021), https://home.treasury.gov/news/press-releases/jy0364.
[14] Maria Henriquez, President Biden Signs Executive Order to Strengthen U.S. Cybersecurity Defenses, Security Magazine (May 13, 2021), https://www.securitymagazine.com/articles/95197-president-biden-signs-executive-order-to-strengthen-us-cybersecurity-defenses.
[15] Ellen Nakashima, Hamza Shaban & Rachel Lerman, The Biden Administration Seeks to Rally Allies and the Private Sector Against the Ransomware Threat, Wash. Post (June 4, 2021, 2:24 PM), https://www.washingtonpost.com/business/2021/06/04/white-house-fbi-ransomware-attacks/.
[16] How Ransomware Works, supra note 1.
Image source: https://krebsonsecurity.com/category/ransomware/