Resources

Ransomware negotiations: An inside look at the process

Written by External Author | Mar 29, 2021 12:45:00 PM

As ransomware attacks continue to surge across the globe, the demand for negotiation services has also increased -- and been hard to fill.

Kurtis Minder, CEO of GroupSense, experienced the rise firsthand over the last year. GroupSense, a threat intelligence vendor based in Arlington, Va., specializes in reconnaissance for post-attack engagements to gather information about emerging threats.

Minder said a significant number of the company's customer wins are incident response-driven; often, he said, larger incident response vendors would bring GroupSense into breach scenarios to provide additional analysis of specific threats in the wild. But something began to shift in the incident response business, starting in early 2020.

"What happened was we got pulled into a very large incident -- it was a Nasdaq-traded company that suffered a very large breach," he said. "We had detected the threat and alerted them, and they brought in their own incident response firm and then brought us back in after the fact."

Read More...