Ransomware gangs weaponize stolen data to force payment
Sophos has released a new dark web report
The widespread disclosure of data as part of ransomware attacks has flooded the criminal underground.
Sophos, a global leader of innovative security solutions for defeating cyberattacks, today released a new report that examines how cybercriminals and other threat actors are increasingly using data dumped from ransomware attacks in secondary extortion attempts.
Key findings
- Ransomware groups are increasingly using stolen data to force payment, even if the victim has already paid the ransom.
- The data is often dumped on the dark web, where it can be accessed by other criminals and used for a variety of purposes, such as identity theft, fraud, and extortion.
- This new tactic is putting additional pressure on victims of ransomware attacks, who are now facing the risk of having their data stolen and used against them.
What can you do to protect yourself?
There are a number of steps you can take to protect yourself from this new threat:
- Back up your data regularly and store it offline.
- Use strong passwords and enable two-factor authentication.
- Keep your software up to date.
- Be wary of suspicious emails and attachments.
If you are the victim of a ransomware attack, do not pay the ransom. Instead, contact your local law enforcement agency and report the incident.
Comments