Christiaan Colen/Flickr.com (CC-BY-SA)

New bill would require ransomware victims to immediately disclose payments to hackers

'The U.S. cannot continue to fight ransomware attacks with one hand tied behind our back.'

 

Colleen Cronin

Tech

Posted on Oct 7, 2021   Updated on Oct 13, 2021, 10:50 am CDT

A new bill introduced this week would mandate that victims of ransomware attacks disclose payments made to hackers to the Department of Homeland Security (DHS).

The Ransom Disclosure Act requires victims to report ransoms within 24 hours of payment. 

The bill also mandates DHS to make payment information available to the public via a website. 

Ransomware attacks have been on the rise in recent years, targeting public and private institutions. This year’s high-profile victims included D.C.’s police department and the Colonial Pipeline.  

Cyberattacks rose 62% from 2019 to 2020 worldwide, according to a report from cybersecurity company SonicWall.

Sen. Elizabeth Warren (D-Mass.) and Rep. Deborah Ross (D-N.C.) are co-sponsoring the bill.

In a statement, Warren said the bill will “allow us to learn how much money cybercriminals are siphoning from American entities to finance criminal enterprises—and help us go after them.”

“Unfortunately, because victims are not required to report attacks or payments to federal authorities, we lack the critical data necessary to understand these cybercriminal enterprises and counter these intrusions,” Ross also said in the statement. 

Colonial Pipeline paid $5 million to the cybercrime gang that attacked it. Though the government retrieved much of that money, it shows that these attacks can be large windfalls for criminals. 

“The U.S. cannot continue to fight ransomware attacks with one hand tied behind our back,” Ross said.


Read more of the Daily Dot’s tech and politics coverage

EXCLUSIVE: Barry Loudermilk was instrumental in pushing Italian satellite conspiracy to top Republican
How accusations around a major NFT release sank it—and raised questions about an alleged NFT ‘ring’
EXCLUSIVE: Far-right organization in Maine obsessed with ‘grooming’ in schools accidentally platformed a convicted sex offender
TikTokers’ new conspiratorial obsession with elites being reptiles has a long, sordid past
EXCLUSIVE: ‘That’s the picture of him buying a gun’: Uvalde mass shooting suspect bought an AR-15 online last week
Sign up to receive the Daily Dot’s Internet Insider newsletter for urgent news from the frontline of online.
Share this article
*First Published: Oct 7, 2021, 1:49 pm CDT