U.S. talks global cybersecurity without a meaningful player — Russia

WASHINGTON (AP) — Amid an epidemic of ransomware attacks, the U.S. is sitting down to talk cybersecurity strategy this week with 30 countries while leaving out one meaningful player — Russia.

The country that, unwittingly or not, hosts many of the criminal syndicates behind ransomware attacks was not invited to a two-day meeting starting Wednesday to develop new strategies to counter the threat.

The virtual discussions will focus in part on efforts to disrupt and prosecute ransomware networks like the one that attacked a major U.S. pipeline company in May, a senior administration official said. The attack on Colonial Pipeline, which led to gas shortages along the East Coast, was credited to a Russia-based gang of cybercriminals.

The exclusion of a country so closely tied to the global ransomware occurrences reflects the overall poor relations between Moscow and Washington.

Despite that, the U.S. has used a “dedicated channel” to address cybersecurity with Russia, said the official, who briefed reporters on the condition of anonymity to preview this week’s meeting with around 30 countries and the European Union.

Since President Biden raised the issue directly with President Vladimir Putin this summer in a summit and later phone call, there have been “candid discussions” about cybercriminals operating within Russia’s borders, the official said.

“We’ve had several, and they continue, and we proportion information regarding specific criminal actors within Russia, and Russia has taken initial steps,” the official said.

It is unclear what steps Putin’s government has taken. Russia does not extradite its own citizens, and FBI Deputy Director Paul Abbate told a security forum last month that he has seen “no indication that the Russian government has taken action to crack down on ransomware actors that are operating in the permissive ecosystem that they’ve produced there.”

The issue was expected to be on the agenda this week in Moscow as Undersecretary of State Victoria Nuland met for talks with Russian Deputy Foreign Minister Sergei Ryabkov.

The Biden administration took office amid a enormous cyberespionage campaign known as the SolarWinds attack, which U.S. officials have connected to Russian intelligence operatives. Ransomware attacks, perpetrated generally by criminal hacker gangs instead of state-sponsored groups, have caused tens of billions of dollars in losses to businesses and institutions and become a major source of tension between the two nations.

Ransomware payments reached more than $400 million globally in 2020 and topped $81 million in the first quarter of 2021, according to the U.S. government.

Actions taken by the Biden administration include imposing sanctions on a Russia-based virtual money brokerage that officials say helped at the minimum eight ransomware gangs launder virtual money and issuing security directives that require pipeline companies to enhance their cyber defenses.

Most of this week’s ransomware meeting is expected to be private as participants attend sessions led by India, Australia, Britain and Germany and will focus on themes such as developing resilience to resist ransomware attacks.

Other participants include Israel, the United Arab Emirates, Bulgaria, Estonia, France, the Dominican Republic, Mexico, New Zealand, Singapore and Kenya.

Sign up for Daily Newsletters

Copyright © 2021 The Washington Times, LLC.

 



Click: See details

Leave a Reply