No ransomware silver bullet, crooks out of reach

Political hand-wringing in Washington over Russia's hacking of federal agencies and interference in US politics has mostly overshadowed a worsening digital scourge with a far broader wallop: crippling and dispiriting extortionary ransomware attacks by cybercriminal mafias that mostly operate in foreign safe havens out of the reach of Western law enforcement.

Stricken in the United States alone last year were more than 100 federal, state and municipal agencies, upwards of 500 health care centers, 1,680 educational institutions and untold thousands of businesses, according to the cybersecurity firm Emsisoft. Dollar losses are in the tens of billions. Accurate numbers are elusive. Many victims shun reporting, fearing the reputational blight. All the while, ransomware gangsters have become more brazen and cocky as they put more and more lives and livelihoods at risk. This week, one syndicate threatened to make available to local criminal gangs data they say they stole from the Washington, DC, metro police on informants. Another recently offered to share data purloined from corporate victims with Wall Street inside traders. Cybercriminals have even reached out directly to people whose personal info was harvested from third parties to pressure victims to pay up.

"In general, the ransomware actors have gotten more bold and more ruthless," said Allan Liska, an analyst with the cybersecurity firm Recorded Future.

The US government now deems ransomware a national security threat. The Department of Justice has just created a task force to tackle it. On Thursday, a public-private task force including Microsoft, Amazon, the National Governors Association, the FBI, Secret Service and Britain and Canada's elite crime agencies delivered to the White House an 81-page urgent action plan for an aggressive and comprehensive whole-of-government assault on ransomware, with Homeland Security Secretary Alejandro Mayorkas set to accompany them for a formal online launch at 1 p.m. EDT.

(This story has not been edited by Devdiscourse staff and is auto-generated from a syndicated feed.)