Description
Total length of the course: <1 hour
Ransomware is a business model as much as a technical threat, and understanding how it works means looking beyond the malware to the criminal economy that surrounds it. In this conversation, explore how different types of ransomware affect victims, why big game hunting became the dominant strategy, how negotiation and payment decisions shape the wider ecosystem, and how deep the ties between ransomware groups and states like Russia actually go, before asking whether there are any genuine reasons for optimism regarding counter-ransomware actions in the near future.
Content details
What are the main types of ransomware, and how do they differ in how they affect victims?
You don't currently have access to this content
If offensive cyber is so resource-intensive, how can criminal hackers still cause so much disruption with ransomware?
You don't currently have access to this content
What is meant by ‘big game hunting’? And is it actually a real phenomenon?
You don't currently have access to this content
Is it common for victims to negotiate with ransomware groups, and what are the goals of these negotiations?
You don't currently have access to this content
What role do negotiation firms play in sustaining the ecosystem?
You don't currently have access to this content
How do victims’ decisions about paying shape the wider criminal economy?
You don't currently have access to this content
To what extent are ransomware groups political actors?
You don't currently have access to this content
Have you observed direct links between ransomware and state objectives?
You don't currently have access to this content
How much protection do ransomware groups receive from states like Russia?
You don't currently have access to this content
Are state–criminal links in Russia still underestimated?
You don't currently have access to this content
What’s one under-appreciated change in attacker tradecraft you think deserves more attention?
You don't currently have access to this content
What role might the Internet of Things (IoT) play in the future of ransomware attacks?
You don't currently have access to this content
Do you see any promising trends in reducing the profitability of ransomware?
You don't currently have access to this content