Slashdot Mirror

← Back to Stories (view on slashdot.org)

Senators: Has Uncle Sam Paid Off Ransomware Criminals? (securityledger.com)

Posted by samzenpus on from the pay-the-shady-man dept.

chicksdaddy writes: Just a month after an FBI official admitted that his agency sometimes advised companies stricken with ransomware to pay the ransom, two U.S. Senators are requesting information about federal agencies' encounters with ransomware malware, and whether Uncle Sam might have paid ransoms, also. "Have federal state or local governments sought DOJ or FBI’s help to remove ransomware from their computers," the Senators asked in a letter (PDF download) addressed to Attorney General Loretta Lynch. "If so, please describe the nature of any assistance sought, whether agencies have paid ransoms to remove ransomware, and whether DOJ or the FBI was able to decrypt the computer systems."

29 of 53 comments (clear)

  1. Is ransomware tax-deductible? by mveloso · · Score: 3, Insightful

    Can you write off ransom costs on your taxes?

    Do you get a receipt when you pay off your ransomware?

    1. Re:Is ransomware tax-deductible? by houstonbofh · · Score: 2

      Actually, yes you do. And it is more professional then a lot of software companies.

    2. Re:Is ransomware tax-deductible? by xxxJonBoyxxx · · Score: 2

      >> Can you write off ransom costs on your taxes?

      I don't see why not. Best case, it's business services and fully deductible. Worst case, it's entertainment (and half deductible).

    3. Re:Is ransomware tax-deductible? by zlives · · Score: 2

      especially if you seek legal advice regarding the measure ...

    4. Re:Is ransomware tax-deductible? by Misch · · Score: 3, Informative

      Yes. An individual can deduct the amount minus ($100 + 10% of AGI) Source: NY Times, Extortion counts as theft. IRS

      Businesses get treated more favorably, they can deduct actual losses.

      --

      --You will rephrase your request for me to go to hell. Goto statements are not acceptable programming constructs
    5. Re:Is ransomware tax-deductible? by msauve · · Score: 3, Funny

      "Extortion counts as theft."

      So I can deduct tax payments from my taxes? Woo-hoo!

      --
      "National Security is the chief cause of national insecurity." - Celine's First Law
  2. Winning quote of the day. by khasim · · Score: 3, Insightful

    The success of the ransomware ends up benefitting victims: because so many people pay, the malware authors are less inclined to wring excess profit out of any single victim, keeping ransoms low.

    Gotta love the "logic" that went into that statement.

    Remember kids, paying the ransom is a lot cheaper than investing in security ... as long as everyone else is also paying the Danegeld.

    1. Re:Winning quote of the day. by houstonbofh · · Score: 2

      The success of the ransomware ends up benefitting victims: because so many people pay, the malware authors are less inclined to wring excess profit out of any single victim, keeping ransoms low.

      Gotta love the "logic" that went into that statement.

      Remember kids, paying the ransom is a lot cheaper than investing in security ... as long as everyone else is also paying the Danegeld.

      It is true... They will not want to kill the goose as long as it keeps laying golden eggs. But you really do not want to be the last "Goose" that takes good backups...

    2. Re:Winning quote of the day. by khasim · · Score: 2

      It is true... They will not want to kill the goose as long as it keeps laying golden eggs.

      The criminals don't. But phrasing that as "benefitting" the victims is ... beyond stupid.

      Like being shaken down for "protection" money. But the mob is doing such a good job that they can offer you a 50% off deal. It might be less painful, but it is not a "benefit" in any way.

    3. Re:Winning quote of the day. by Anonymous Coward · · Score: 1

      That reminds me. We should have security insurance and make it mandatory. Something like ASSA (Affordable Software Security Act)?

    4. Re:Winning quote of the day. by hey! · · Score: 1

      Well, let's assume that malware authors are economically rational. If they demand millions of dollars almost nobody will pay. If they demand a penny they'll get lots of people paying, but they won't net much. There's an optimum ransom price between the extremes where they maximize their revenue, and it's likely to be relatively low -- in the hundreds of dollars -- rather than the tens of thousands of dollars. For one thing any organizations has a threshold under which managers can spend with their own discretion; going over that level is apt to make getting paid a lot quicker. Quick in finance is a very important thing; and it's an even more important thing when it comes to banditry. The longer something goes on the more likely you'll get caught or people will find a way around your scheme.

      Now if it were me, I'd set a series of dates after which the ransom goes up, and promptly respond to anyone who paid up early. It's like selling anything else; if you're seen as reliable and responsive people are more likely to give you money; they're also more likely to give you money if they think they'll have to pay you more later.

      --
      Post may contain irony: discontinue use if experiencing mood swings, nausea or elevated blood pressure.
    5. Re:Winning quote of the day. by DarkOx · · Score: 1

      Like being shaken down for "protection" money. But the mob is doing such a good job that they can offer you a 50% off deal. It might be less painful, but it is not a "benefit" in any way.

      Depends. protection money is a racket because of course if you opt not to pay than something terrible *will* happen to you, perpetrated by your would be protector. On the other hand in a lot cases various places around the would I have heard about from people you absolutely do get some *protection* for your money. There is usually some symbol like placing a statue of saint or something in a window that lets other criminal gangs know you are client of one of their rivals. They than leave you and your establishment alone because they know if something happens and your protectors think it was them they will seek retribution.

      --
      Repeal the 17th Amendment TODAY! Also Please Read http://www.gnu.org/philosophy/right-to-read.html
  3. Re:Officially or unofficially? by houstonbofh · · Score: 4, Funny

    Consulting services.

  4. New York State has paid the criminals. by truck_soccer · · Score: 2

    Had a few machines come in from various state orgs and universities 2 years ago when crypto starting making the rounds again. Their backups were too old, had to pay the fuckers. They did get all their stuff back. But still, they paid some assknob in east fuckistan 1200USD a pop. That was when I figured out that I was playing on the wrong team.

    1. Re: New York State has paid the criminals. by Anonymous Coward · · Score: 3, Funny

      No he ordered an assknob from Amazon. Followed the directions, inserted assknob and began pleasuring himself for the "wrong team".

    2. Re:New York State has paid the criminals. by Wonko+the+Sane · · Score: 1

      some assknob in east fuckistan

      You really think that no public sector employee has figured out yet that they could infect their own work computers with malware and get a bitcoin advance on their pension while blaming the east fuckistanians?

  5. problem, reaction, solution. done. by Thud457 · · Score: 1

    see? Criminals use encryption.
    Encryption must be outlawed.

    --

    the preceding comment is my own and in no way reflects the opinion of the Joint Chiefs of Staff

    1. Re:problem, reaction, solution. done. by KGIII · · Score: 2

      I know it's popular to blame everybody else but maybe it's time to blame the terrorists themselves?

      People seem hell-bent on blaming the US, guns, politicians, religion, economy, environment, the French, Europe in general, etc... How about we just, you know, blame the asshole terrorists?

      --
      "So long and thanks for all the fish."
  6. This just in! by Archangel+Michael · · Score: 2

    Hillary Clinton has just announced that her "Email Server" and all the "Emails" were held hostage by Ransomware and she didn't pay, and that is why she doesn't have those emails everyone doesn't care about.

    --
    Agent K: A *person* is smart. People are dumb, stupid, panicky animals, and you know it.
    1. Re:This just in! by CanadianMacFan · · Score: 1

      I thought she went to give a speech to them in order to get a backdoor put in to the encryption to help fight ISIS.

  7. The answer should be "Of course we paid them!" by thogard · · Score: 1

    I would hope the reason they paid was to track them down seeing that is the job the FBI and CIA keep telling the tax payers they do.

  8. Is there really much doubt by DarkOx · · Score: 2, Insightful

    U.S. Senators are requesting information about federal agencies' encounters with ransomware malware, and whether Uncle Sam might have paid ransoms,

    I mean the Obama administration has pretty publicly failed to up hold the 'US does not negotiate with terrorists' line. That is the sort of precedent that gets set at the top. When the President is out there doing prisoner swaps with the Taliban its pretty hard to expect some mid level IT bureaucrat to spine up and tell his bosses they fucked up don't have backups and got hit with crypt malware. Much easier to submit an expense report for "consulting services" and hope the issue is forgotten quickly.

    --
    Repeal the 17th Amendment TODAY! Also Please Read http://www.gnu.org/philosophy/right-to-read.html
    1. Re:Is there really much doubt by Anonymous Coward · · Score: 1

      I'm sure you didn't raise any objections in 2002 when the Bush administration negotiated a ransom payment to the al Qaeda linked Abu Sayyaf terrorist group in an attempt to free the two Burnham hostages.

  9. More proof of my hypothesis about the NSA by Applehu+Akbar · · Score: 3, Insightful

    We already know that local governments, including police and sheriff offices, have been nailed by ransomware and have paid up to get their data back. If this conjecture about the feds proves out, it would reinforce my hypothesis that NSA surveillance is a paper tiger. If NSA data collection was as effective as we fear it is, they would be able to trace the Bitcoin payments and have agents sent out to strangle the perps with their own intestines, no matter where they might be located.

    Whatever we think of the NSA's domestic operations, everyone in here would love to see that happen at least once.

    1. Re:More proof of my hypothesis about the NSA by geekmux · · Score: 1

      We already know that local governments, including police and sheriff offices, have been nailed by ransomware and have paid up to get their data back. If this conjecture about the feds proves out, it would reinforce my hypothesis that NSA surveillance is a paper tiger. If NSA data collection was as effective as we fear it is, they would be able to trace the Bitcoin payments and have agents sent out to strangle the perps with their own intestines, no matter where they might be located.

      Everyone except the very entity who would want to keep that capability secret, which is why this shit has likely happened more than once to [random dumbass] who simply disappeared off the radar without anyone really noticing.

      Whatever we think of the NSA's domestic operations, everyone in here would love to see that happen at least once.

      You know, there's a reason governments use the concept of need to know quite often...it's usually to ensure it will happen far more than "once"...

    2. Re:More proof of my hypothesis about the NSA by Anonymous Coward · · Score: 1

      Domestic surveillance programs are pork barrel scams. Always have been.

      Security agency has the ear of congress and executive, tells them they need local spying and big local spy data warehouses

      Security agency heads "Retire" to security services contractor outfits

      Security services contractors make untold piles of money on black budget projects with no oversite or audit

      Lather, rinse, repeat

      See also: Every armed forces branch, financial services industry.

    3. Re:More proof of my hypothesis about the NSA by jonwil · · Score: 1

      Even if the NSA had the capability to track down these cyber crime gangs AND even if the NSA was willing to expose their methods in order to get them, there isn't a lot the US can do.

      Its not like they can send CIA assassins (or armed drones) into the heart of Putin's Russia to take out the cybercrime bigwigs (especially when those bigwigs are friends of Putin)

    4. Re:More proof of my hypothesis about the NSA by Applehu+Akbar · · Score: 1

      These are hardly petty criminals. They target businesses of all sizes, and have hit governments. If they have hit the federal government, then by definition national security is involved, and it's showtime for whatever special agents and forces eradicating them takes.

      The Enigma reference is irrelevant because during WW II, we specifically didn't want the Axis to know that we had broken their code. Ransomware operators? We would want them to know that we can trace them and kill them wherever they are, and if we can break their encryption we want them to know that too.

  10. Re:NSA capabilities by AHuxley · · Score: 1

    Governments usually push for been in on the development of national standards for computer brands and telcos. The government then gets to build in trap doors and backdoors during the design stage. The other is the use of informants in the tame private sector and the use of crypto from gov created front companies.
    Cryptography in the wild is not easy.

    --
    Domestic spying is now "Benign Information Gathering"