The U.S. Department of Justice indicated yesterday, that going forward, it will use a similar approach to dealing with legal cases involving ransomware as it does for terrorism. This will apply across public and private sector target organizations, using protocols that enable greater unification between agencies and more rapid response for tracking down the perpetrators. This change to its protocols is a strong indication that the federal government has realized the extent of the threat posed by ransomware and similar campaigns. Cyber attacks have now reached a level of impact to the livelihoods of its citizens similar to the threat posed by actors bent on wreaking physical havoc through the use of explosive devices, hijackings, and armed assaults against masses of people.
Cyber attacks have now reached a level of impact ... similar to the threat posed by [terrorists].
A memo issued by the Deputy Attorney General, Lisa Monaco, Thursday, 3 June 2021, directed U.S. prosecutors to “report all ransomware investigations they may be working on.” Monaco explained, “We must enhance and centralize our internal tracking of investigations and prosecutions of ransomware groups and the infrastructure and networks that allow these threats to persist. (1)
If the Department of Justice has come to recognize the risk of cybercrime as "on par with terrorism", it might be time for a reevaluation of where your organization pegs the risk it poses to your operations. Webcheck Security offers Fractional Information Security Officer (FISO) services. This offers companies a highly experienced and practicing Chief Information Security Officer that act as a consultant to assist you with assessing organizational risks, effective mitigations, and even recommended policies, procedures, and security solutions to most efficiently increase your security maturity.
Additionally, Webcheck has the ability to provide you with a pool of expert web application, external, and internal penetration testing professionals. They can perform the same types of attacks against your networks and systems that malicious actors will attempt, but do so without putting your sensitive data and other assets at risk. Reach out to Webcheck today to learn how we can help you raise the bar for your defensive posture to the level required by the increased threat posed by cybercrime.