187 views 11 secs 0 comments

‘Punishing the victims’: Would banning ransom payments stop hospital cyberattacks?

In its The State of Ransomware in the U.S. report for 2023, Emsisoft opined that the only solution to the ransomware crisis is to completely ban ransomware payments. That recommendation has generated some discussion, and now Becker’s has also reached out to health system CISOs to get their reaction to the recommendation.

The majority’s opinion was that a ban would not be effective. As one example of reactions, Becker’s reports:

The U.S. Treasury Department already bans ransom payments to entities under U.S. sanction — which has not deterred attacks, said Jack Kufahl, CISO at Ann Arbor-based Michigan Medicine. “Administrative and legislative activities should be focusing on the cause of the criminal activity, not the victims of it,” he said. “Punishing the victims of crimes is another incremental move in the wrong direction.”

Read more reactions to the proposed ban at Becker’s.