FBI je kongresu povedal, da plačila z izsiljevalsko programsko opremo ne bi smela biti prepovedana

After meeting with the business sector and cybersecurity experts, the Biden administration backed away from the concept of barring ransomware payments, according to a top cybersecurity official on Wednesday. At an Aspen Security Forum event, Anne Neuberger, deputy national security adviser for cyber and new technology, said, “Initially, I thought that was a good approach. We know that ransom payments are at the heart of this ecosystem.”

A top FBI official told US lawmakers in July that making ransom payments to cybercriminals illegal is not the best way to combat the danger of ransomware. According to Bryan Vorndran, assistant director of the FBI’s cyber division, banning ransom payments could unwittingly open the door to more extortion by ransomware gangs. 

“If we ban ransom payments now, you’re putting US companies in a position to face yet another extortion, which is being blackmailed for paying the ransom and not sharing that with authorities,” Vorndran said at a Senate Judiciary Committee hearing on ransomware. 

The debate over whether or not ransomware payments should be illegal exemplifies the larger issue that policymakers have in trying to combat a crime that takes advantage of a victim’s financial incentives. According to cybersecurity experts, paying in the hopes of rapidly fixing an issue is often more appealing than refusing to negotiate, having to recover data from backups, and risking the publishing of sensitive information online. 

"Od mnogih smo glasno in jasno slišali, da je stanje odpornosti neustrezno, in kot tako, če bi prepovedali plačila odkupnin, bi v bistvu še več te dejavnosti potisnili v podzemlje in izgubili vpogled vanjo, kar nam bo omogočilo, da jo zmotimo," Anne rekel. 

Eden od motečih poskusov je prizadevanje za pridobitev preglednosti omrežij kriptovalut, ki so postala priljubljen način plačevanja kibernetskih kriminalcev. Svet za nacionalno varnost po besedah ​​Neubergerja sodeluje z drugimi člani medagencijske delovne skupine pri pregledu predpisov in zaščitnih ukrepov, ki bi omogočili izboljšano spremljanje plačil. 

"Naš vodilni cilj je hitro sledenje in resnično krepitev domačega in mednarodnega regulativnega okolja virtualnih valut, da bi to omogočili," je dejala. "En velik del tega je tudi vgradnja teh vrst zaščite pri oblikovanju novih virtualnih valut in obravnavanje tega na način, da imamo lahko inovacije in nimamo široke nezakonite uporabe, ki spodbuja kriminalno dejavnost."