CYBER THURSDAY: Maze Ransomware and Trends in Cyber Extortion

Speaker: Anya Vysotskaya, Senior Security Analyst at Flashpoint

In November 2019, a new cyber extortion trend emerged in the ransomware landscape: the exfiltration of data before encryption, and the possible publication of the data if ransom demands were not met. The threat of publishing stolen data was then used as leverage to coerce victims to pay the ransom. Ransomware criminals use this extortion tactic to prevent victims from using backups as a means of avoiding paying the ransom. The “Maze” ransomware gang began this trend, and it was later adopted by other cyber extortionists, including “Sodinokibi,” “Nemty,” “BitPyLock,” and others. This new trend of publishing the sensitive data may create enough public outcry to force lawmakers to push out legislation requiring data breach disclosures following ransomware attacks. But the big question remains: how can companies protect themselves and how should they respond if attacked?

Key Takeaways

  1. Ransomware trends of 2019 brief overview.
  2. Maze deep dive.
  3. Other extortionist ransomware.
  4. Trends in cyber extortion and how to fight back.

ELIGIBILITY: This webinar is open to RH-ISAC Core members and retail and hospitality cybersecurity practitioners eligible for Core Membership. Ineligible registrants will have their registration canceled. To learn about eligibility, visit rhisac.org/membership. Email events@rhisac.org with any questions.