The FBI held a closed-door conference, titled the “Ransomware Summit,” in 2019 at Carnegie Mellon University to address growing concerns with ransomware attacks; this conference was the start of a dialogue with the private sector regarding ransomware, and all sorts of organizations, from computer hardware company IBM to law firm Kroll, shared their lessons learned from tracking attackers and helping victims recover.
Attribution—unmasking the cybercriminal—is key to solving this problem, and just as 4iQ VP of Product Amyn Gilani laid out in his white paper, “Modern-Day Manhunt: Operationalizing Cyber Attribution,” understanding the adversary and their capabilities can assist intelligence and law enforcement organizations, financial services, retailers, etc. prepare for an attack and proactively threat hunt, disrupt the adversary and prevent future attacks.
“The [ransomware] problem is by some measures growing more acute: Over 100 public-sector ransomware attacks have been reported in 2019 alone, double the amount in 2018… The goal of the FBI’s 2019 ‘Ransomware Summit’ was for corporate executives to ‘help us fill in some of the gaps in the intel’ on ransomware threats, said Herb Stapleton, section chief in the FBI’s cyber division. Those gaps, he said, stem from the fact that ‘there are probably thousands of attacks every year that aren’t reported to the FBI.’”