16 October 2021

After Spike in Ransomware Attacks, U.S. Looks to Go on the Offensive

Robbie Gramer

The Biden administration convened a virtual summit of more than 30 countries to combat the growing threat of ransomware attacks after a recent spike in high-profile cyberattacks exposed vulnerabilities in critical U.S. infrastructure.

The summit, taking place Wednesday and Thursday, is the newest and most high-profile diplomatic push by the administration to ramp up efforts to target cybercriminals and defend against cyberattacks.

“We cannot do this alone,” U.S. National Security Advisor Jake Sullivan said in opening remarks at the summit on Wednesday. “No one country, no one group can solve this problem. Transnational criminals are most often the perpetrators of ransomware crimes, and they often leverage global infrastructure and money laundering networks across multiple countries, multiple jurisdictions to carry out their attacks.”

Ransomware attacks, where hackers lock victims out of their computer networks and demand extortion payments to release them, are one in a series of cyberattacks from nonstate actors and hacking groups affiliated with Washington’s geopolitical rivals in Russia and China that the U.S. government is scrambling to defend against. Among the countries attending the virtual summit are Australia, Brazil, Canada, France, Germany, Ukraine, Israel, the United Arab Emirates, Kenya, Nigeria, Japan, and South Korea. Neither Russia nor China were invited.

The “list of countries highlights just how pernicious and transnational and global the ransomware threat has been in the different countries from all different parts of the world who will be participating,” a senior administration official said.


The senior administration official didn’t give a specific reason why Russia wasn’t invited but said U.S. President Joe Biden has a separate channel open with Russian President Vladimir Putin to discuss cyberthreats.

Cybersecurity experts said the summit is a sorely needed and long-overdue step to address the surge in ransomware attacks. “The fact that they’re having the conversation now for starters is good, though I wish that they’d done this three years ago,” said Allan Liska, a senior intelligence analyst at cybersecurity firm Recorded Future.

Top Biden administration officials have been raising the alarm bell about increased ransomware attacks this year. “Ransomware is one of the greatest cybersecurity threats that we face,” U.S. Homeland Security Secretary Alejandro Mayorkas told lawmakers during a hearing earlier this year. He said the United States has seen a 300 percent increase in ransomware attacks over the past year, leading to more than $300 million in losses.

So far, however, the latest flurry in high-level diplomacy and other actions against cybercriminal groups haven’t fully stemmed the tide of ransomware attacks. On Wednesday, just as the White House began convening its summit, an Israeli hospital system was reportedly targeted by a new ransomware attack.

The Biden administration has sought to rally its allies to help fight cyberthreats and ransomware attacks, pushing NATO to adopt a new cyber defense policy and launching talks on cyberthreats among G-7 nations. It also launched a series of initiatives in recent months to target cybercriminals and boost protection against ransomware attacks following several high-profile ransomware attacks against a major oil pipeline company and a meat-processing company earlier this year. The attacks laid bare how vulnerable elements of U.S. critical infrastructure, including its food and energy sectors, were to cyber incursions.

No comments: