FBI: Ransomware Actors Use Financial Events to Extort VictimsFBI: Ransomware Actors Use Financial Events to Extort Victims
Attackers research financial information about an organization and threaten to disclose it if they don't receive ransom quickly.
November 2, 2021
The FBI reports that ransomware attackers are likely to use significant financial events, such as mergers and acquisitions, to target and extort victim organizations.
In a private industry notification released today, officials explained that ransomware actors research publicly available information, such as stock valuation, as well as material nonpublic information ahead of an attack. If their victim does not quickly pay the ransom, the attackers threaten to publish this information, which could potentially cause investor backlash, they said.
"Ransomware actors are targeting companies involved in significant, time-sensitive financial events to incentivize ransom payments by these victims," the FBI reports. Impending events that may affect a company's stock value, such as announcements, mergers, or acquisitions, encourage attackers to target a specific network or change their extortion timeline, they add.
Officials list multiple cases in which attackers were interested in stock share price or threatened to leak data to the Nasdaq stock exchange. Between March and July 2020, at least three publicly traded US companies actively involved in M&A were victims of ransomware during their negotiations, according to the FBI. Of these three, two were under private negotiations.
Read more details here.
About the Author(s)
You May Also Like
Hacking Your Digital Identity: How Cybercriminals Can and Will Get Around Your Authentication MethodsOct 26, 2023
Modern Supply Chain Security: Integrated, Interconnected, and Context-DrivenNov 06, 2023
How to Combat the Latest Cloud Security ThreatsNov 06, 2023
Reducing Cyber Risk in Enterprise Email Systems: It's Not Just Spam and PhishingNov 01, 2023
SecOps & DevSecOps in the CloudNov 06, 2023