Cybersecurity, Privacy, & AI

Trending Now

Anthropic’s Reported $30B Funding Talks Spotlight AI’s Growing Role in Cybersecurity, Defense • DC3 Seeks New Contractors for DCISE Voluntary Cyber Information-Sharing Program • Pentagon Cyber Official Calls Advanced AI ‘Revolutionary Warfare’ • NIST Aims for Summer Release of AI Cyber Guidelines • President Trump’s Cyber Strategy: Cross-Sector Implications for U.S. and UK Businesses

Published on August 18, 2021 • Cyber

Ethical, Legal Implications of Paying Ransoms

Carlos Amarillo | Shutterstock

In an opinion piece for National Defense, Phyllis Sumner and Jillian Simons of King & Spalding write about the growing threat of ransomware, and urge companies to “make strategic and risk-based decisions on whether to engage with threat actors and/or pay the ransom.” They stress the need for a incident response plan, and recommend things to do in whether a company has a “no pay” policy or not. They present a number of arguments for not paying, however, including the reputation the company may acquire as a lucrative target, the ethical ramifications of “supporting” the activity and the criminal and terrorist organizations behind it, the FBI’s advocacy against paying ransoms, and the potential to run afoul of Office of Foreign Assets Control’s international sanctions.

Source:

National Defense: Ethical, Legal Implications of Paying Ransoms

Stay compliant and protected with daily updates on cybersecurity, data privacy, and federal oversight with our Cyber & Privacy newsletter, delivering up-to-the-minute intelligence Monday–Saturday — Subscribe here.