FBI/CISA Failed: Biden’s Ransomware Summit Convenes, Impotently
The International Counter Ransomware Summit is on in D.C., with representatives from 36 nations and blocs attending. Not including Russia, natch.
This White House–led initiative seeks to bring together law enforcement and technical practitioners from around the world—to discuss what the heck can be done about these ransomware scrotes. They’ll be comparing notes and sharing best practices and wondering why their efforts have mostly failed so far.
But will it amount to anything of substance? In today’s SB Blogwatch, we fear not.
Your humble blogwatcher curated these bloggy bits for your entertainment. Not to mention: Oscilloscope music.
Talking Shop at the Talking Shop
What’s the craic? Jack Gillum reports—“Ransomware Attacks Are Outpacing Ability to Stop Them”:
“Three dozen countries”
The pace and sophistication of ransomware attacks is increasing faster than the US’s ability keep up with efforts to disrupt and recover from them, a senior Biden administration official said. … The US is continuing to work on severing illicit payment methods that make ransomware financially viable, namely through cryptocurrency, said the … official, who spoke on condition of anonymity.
…
Ransomware actors have appeared to widen their targets and continue to release private troves of data. … That includes an attack this fall on the Los Angeles Unified School District … in which confidential information about students was leaked when the ransom wasn’t paid
…
In the face of continued attacks against governments and the private sector, the US is hosting the International Counter Ransomware Summit. [It] brings together … three dozen countries to tackle the pernicious rise of one of the most challenging cybersecurity threats, which can paralyze hospitals and shut down major gas pipelines.
And Alexandra Kelley adds—“Second International Counter Ransomware Initiative Summit”:
“Geopolitical tensions between Russia and the U.S.”
Combating illicit financial and digital asset transactions will dominate discussion at the International Counter Ransomware Initiative Summit, where 36 countries will strategize how to better combat growing cyber threats. … This comes as many of these countries—including the U.S.—have witnessed an uptick in hacks on the digital networks of important institutions, such as hospitals, schools, and utility companies.
…
Several ally nations have specialized in monitoring and preventing ransomware threats, with administration officials highlighting specialized work done across the globe, namely Lithuania and India’s digital infrastructure resilience, Australia’s cyber disruption research, Singapore and the UK’s virtual currency initiatives, and Spain’s leadership in fostering public-private sector partnerships. … Private sector companies will also participate … selected as a strong representative pool to encompass a diverse set of regional and focus areas impacted by ransomware threats.
…
Compounding the usage of digital assets in illegal transactions are ongoing geopolitical tensions between Russia and the U.S. and its allies. … Members joining the summit are set to discuss how to effectively pursue crypto-based money laundering across technologies like blockchain and digital crypto wallets.
But will Russia attend? Here’s Martin Matishak—“White House aims to ‘redouble’ global push”:
Russia, which has become notorious for sheltering ransomware organizations, was once again left off the White House’s guest list. … A senior administration official … downplayed Moscow’s absence, arguing the event will focus more on how countries can disrupt malicious actors and strengthen their resilience [and] adding the group would issue a statement on countries that provide digital criminals with safe harbor.
Very diplomatic language. Unlike Voyager529’s:
It’s better that they’re not present. [They] are well aware of the problem, but it’s a problem for us, not them. From their perspective, ransomware brings piles of money … and generally harms people and companies too small to retaliate.
Besides, lots of those payments are made by insurance companies. … As long as the ransomware scammers have learned to avoid large oil pipelines and hospitals, that’s probably about the best we can ask at this stage of world politics.
Russia might be seeking an unofficial role. So suggests u/Encryptedmind:
But the Russians will be selling USB wristbands outside the summit.
One might reframe this story as “the FBI, NSA and CISA have failed us.” wolverine876 doesn’t hold back:
An essential question that is normally overlooked: Where is public safety and the rule of law on the Internet? Criminal activity is brazen and unconstrained. If it happened on the street, there would be an uproar and demand of law enforcement.
…
In the early days of the Internet, the lack of public safety and rule of law seemed normal. The environment wasn’t really part of society, but an unusual subculture disconnected from reality (“IRL”). Now it’s arguably the core of society, the venue for most business and interaction. This … lack of government, law, safety is now absurd, and there are many, many innocent victims.
Why so serious? TWX lightens the mood:
And here I was hoping that law enforcement had figured out which people or groups pretending to be legitimate anti-malware researchers were actually behind the ransomware attacks, and had invited them to the summit as a honeypot.
Meanwhile, u/CuppaMatt imagines the invite:
From: [email protected]
Subject: ransomeware Event
Attachment: invite.docx.exe
And Finally:
You have been reading SB Blogwatch by Richi Jennings. Richi curates the best bloggy bits, finest forums, and weirdest websites … so you don’t have to. Hate mail may be directed to @RiCHi or [email protected]. Ask your doctor before reading. Your mileage may vary. Past performance is no guarantee of future results. Do not stare into laser with remaining eye. E&OE. 30.
Image source: Tia Dufour (PD)
