Ransomware tops U.S. cyber priorities, Homeland secretary says

FILE PHOTO: U.S. Department of Homeland Security Secretary Alejandro Mayorkas speaks during a press briefing at the White House in Washington, U.S., March 1, 2021. REUTERS/Kevin Lamarque/File Photo

WASHINGTON (Reuters) -Department of Homeland Security (DHS) Secretary Alejandro Mayorkas said on Wednesday that dealing with ransomware will be a top priority, highlighting the growing threat of the data-scrambling software.

Ransomware - which effectively holds files and networks hostage unless a payment is made - has steadily climbed to the top of America’s security agenda as the criminals behind it become increasingly well-resourced.

Speaking via a webcast, Mayorkas said that ransomware was “a particularly egregious type of malicious cyber activity” and listed it as the first of several top priorities that his department would tackle in the online sphere.

Many ransomware operators work out of jurisdictions with a lax attitude to cybercrime, and Mayorkas said he would seek to hold accountable “governments that do not use the full extent of their authority to stop the culprits.”

Mayorkas said the government would seek to disrupt not just those that launched ransomware operations but also “the marketplaces that enable them.”

Mayorkas did not say so explicitly, but a DHS official said the reference was to underground forums that help cybercriminals franchise out their malicious campaigns.

Earlier in his address, Mayorkas laid out an ambitious role for the Cybersecurity and Infrastructure Security Agency (CISA), which is DHS’ cyber arm. He said the agency would “quarterback” the U.S. government’s digital defenses and serve as a “trusted interlocutor” between business executives and public servants.

“It is clearly best positioned to be the tip of the spear and the front door for the U.S. government’s engagement with industry on cybersecurity,” he said.

Reporting by Raphael Satter; Editing by Cynthia Osterman and Bill Berkrot