UK govt set to expand ransomware payment ban

The ban would aim to cut the flow of ransom payments to organised cybercrime groups as well boost intelligence gathering to target and disrupt them, the government's Home Office said. — Image by Freepik

LONDON: The UK government said on Jan 14 it would consult on proposals to ban bodies running essential public services and critical national infrastructure from making ransomware payments.

The ban would aim to cut the flow of ransom payments to organised cybercrime groups as well boost intelligence gathering to target and disrupt them, the government's Home Office said.

Attacks were "largely by Russian-affiliated criminal gangs" and posed "the most immediate and disruptive threat to the UK's critical infrastructure", according to the National Cyber Security Centre's 2024 annual review.

A ransomware attack last June led to major disruption at London hospitals.

Security Minister Dan Jarvis said the initiative would "help us meet the scale of the ransomware threat, hitting these criminal networks in their wallets and cutting off the key financial pipeline they rely on to operate".

Ransomware criminals were estimated to have raked in US$1bil (RM4.50bil) globally in 2023, he added.

Under the proposals, bodies including the state-funded National Health Service (NHS), local councils and schools would be banned from making ransomware payments.

A ban already applies to government departments.

There would also be a mandatory reporting regime for ransomware incidents to bring the crime "out of the shadows" and assist investigators, the Home Office said.

Officials said last year an international operation led by UK and US law enforcement had severely disrupted "the world's most harmful cybercrime group", the Russian-linked ransomware specialist LockBit.

LockBit and its affiliates had targeted governments, major companies, schools and hospitals, causing billions of dollars of damage and extracting tens of millions in ransoms from victims.

Those targeted included Britain's Royal Mail, US aircraft manufacturer Boeing, and a Canadian children's hospital.

In January 2023, US law enforcers shut down the Hive ransomware operation which extorted some US$100mil (RM450.07mil) from more than 1,500 victims worldwide.

In June 2023, a cyberattack on service supplier Synnovis particularly hit blood transfusions, and hundreds of appointments and operations were cancelled at two of the UK's biggest hospitals – King's College Hospital and Guy's and St Thomas' in the centre of the British capital. – AFP

Follow us on our official WhatsApp channel for breaking news alerts and key updates!

Next In Tech News
Meta to offer choices on personal Facebook and Instagram ads, EU says
Amnesty says India's review of location-tracking plan 'deeply concerning'
Only a few automakers to keep up AI push, Gartner says
Suspected TikTok and drunken driving crashes highlight dangers of impaired and distracted driving
Apple just lost a key designer– many are happy to see him go
A grand social media experiment begins in Australia
Silicon Valley builds Amazon and Gmail copycats to train AI agents
People are uploading their medical records to AI chatbots
Christmas unplugged: Australian teen social media ban brings holiday headspace woes
'Not black or white': Teens worldwide react to Australia social media ban

Trending in Tech

Others Also Read

Load more

Copyright © 1995- Star Media Group Berhad [197101000523 (10894-D)]

Best viewed on Chrome browsers.