This video details one of the new headaches/nuances involved with paying ransomware. Suffice to say, it looks like the incident response process has become more complicated due to the increased scrutiny being placed on ransomware payments. I would forecast that this problem will only worsen as the Russia-Ukraine conflict continues.

What this means for you:

  1. This is yet another shot across the bow to demonstrate the need for additional controls.
  2. Ransomware could cost more to resolve. This additional cost should be accounted for in your cyber insurance limits. You do have cyber insurance, right?
  3. If you get hit, and your insurance denies payment, this could be an extinction-level event for your business!
  4. I guarantee that this will be news to many of you. 99.99% of insurance guys won’t relay this information to you due to ignorance or lack of knowledge.