UK govt set to expand ransomware payment ban

The ban would aim to cut the flow of ransom payments to organised cybercrime groups as well boost intelligence gathering to target and disrupt them, the government's Home Office said. — Image by Freepik

LONDON: The UK government said on Jan 14 it would consult on proposals to ban bodies running essential public services and critical national infrastructure from making ransomware payments.

The ban would aim to cut the flow of ransom payments to organised cybercrime groups as well boost intelligence gathering to target and disrupt them, the government's Home Office said.

Attacks were "largely by Russian-affiliated criminal gangs" and posed "the most immediate and disruptive threat to the UK's critical infrastructure", according to the National Cyber Security Centre's 2024 annual review.

A ransomware attack last June led to major disruption at London hospitals.

Security Minister Dan Jarvis said the initiative would "help us meet the scale of the ransomware threat, hitting these criminal networks in their wallets and cutting off the key financial pipeline they rely on to operate".

Ransomware criminals were estimated to have raked in US$1bil (RM4.50bil) globally in 2023, he added.

Under the proposals, bodies including the state-funded National Health Service (NHS), local councils and schools would be banned from making ransomware payments.

A ban already applies to government departments.

There would also be a mandatory reporting regime for ransomware incidents to bring the crime "out of the shadows" and assist investigators, the Home Office said.

Officials said last year an international operation led by UK and US law enforcement had severely disrupted "the world's most harmful cybercrime group", the Russian-linked ransomware specialist LockBit.

LockBit and its affiliates had targeted governments, major companies, schools and hospitals, causing billions of dollars of damage and extracting tens of millions in ransoms from victims.

Those targeted included Britain's Royal Mail, US aircraft manufacturer Boeing, and a Canadian children's hospital.

In January 2023, US law enforcers shut down the Hive ransomware operation which extorted some US$100mil (RM450.07mil) from more than 1,500 victims worldwide.

In June 2023, a cyberattack on service supplier Synnovis particularly hit blood transfusions, and hundreds of appointments and operations were cancelled at two of the UK's biggest hospitals – King's College Hospital and Guy's and St Thomas' in the centre of the British capital. – AFP

×
Follow us on our official WhatsApp channel for breaking news alerts and key updates!

   

Report it to us.

Next In Tech News
Brazil says Meta hate speech policy changes do not fit with local law
Decision on digital pound over two years away, Bank of England says
EU assesses Big Tech cases ahead of Trump arrival
Russian fines Google $78 million for ignoring previous penalties
Australia's Macquarie to invest up to $5 billion in Applied Digital data centers
UK competition watchdog to investigate Google search services
Indonesia plans minimum age for social media use
Florida cop slams into motorist while watching porn
Elon Musk says a third patient got a Neuralink brain implant. The work is part of a booming field
Japan netizens discover stolen classic race motorbike after cosplayer posts it online

Trending in Tech

Others Also Read

Load more

Copyright © 1995- Star Media Group Berhad [197101000523 (10894-D)]

Best viewed on Chrome browsers.