Article Lead Image

Christiaan Colen/ (CC-BY-SA)

New bill would require ransomware victims to immediately disclose payments to hackers

'The U.S. cannot continue to fight ransomware attacks with one hand tied behind our back.'


Colleen Cronin


Posted on Oct 7, 2021   Updated on Oct 13, 2021, 10:50 am CDT

A new bill introduced this week would mandate that victims of ransomware attacks disclose payments made to hackers to the Department of Homeland Security (DHS).

The Ransom Disclosure Act requires victims to report ransoms within 24 hours of payment. 

The bill also mandates DHS to make payment information available to the public via a website. 

Ransomware attacks have been on the rise in recent years, targeting public and private institutions. This year’s high-profile victims included D.C.’s police department and the Colonial Pipeline.  

Cyberattacks rose 62% from 2019 to 2020 worldwide, according to a report from cybersecurity company SonicWall.

Sen. Elizabeth Warren (D-Mass.) and Rep. Deborah Ross (D-N.C.) are co-sponsoring the bill.

In a statement, Warren said the bill will “allow us to learn how much money cybercriminals are siphoning from American entities to finance criminal enterprises—and help us go after them.”

“Unfortunately, because victims are not required to report attacks or payments to federal authorities, we lack the critical data necessary to understand these cybercriminal enterprises and counter these intrusions,” Ross also said in the statement. 

Colonial Pipeline paid $5 million to the cybercrime gang that attacked it. Though the government retrieved much of that money, it shows that these attacks can be large windfalls for criminals. 

“The U.S. cannot continue to fight ransomware attacks with one hand tied behind our back,” Ross said.

Read more of the Daily Dot’s tech and politics coverage

Nevada’s GOP secretary of state candidate follows QAnon, neo-Nazi accounts on Gab, Telegram
Court filing in Bored Apes lawsuit revives claims founders built NFT empire on Nazi ideology
EXCLUSIVE: ‘Say hi to the Donald for us’: Florida police briefed armed right-wing group before they went to Jan. 6 protest
Inside the Proud Boys’ ties to ghost gun sales
‘Judas’: Gab users are furious its founder handed over data to the FBI without a subpoena
EXCLUSIVE: Anti-vax dating site that let people advertise ‘mRNA FREE’ semen left all its user data exposed
Sign up to receive the Daily Dot’s Internet Insider newsletter for urgent news from the frontline of online.
Share this article
*First Published: Oct 7, 2021, 1:49 pm CDT