UK to ban public sector from making ransomware payments

UK government moves to ban ransomware payments

The UK has announced plans to prohibit its public sector and operators of critical national infrastructure from making ransomware payments. This decision comes as a way to combat cybercriminals and protect essential services from being disrupted by malicious attacks.

Proposals to prevent ransomware payments

The proposals put forth as a result of a public consultation call for a ban on ransomware payments across all public sector bodies and critical national infrastructure, including energy, healthcare, and local councils. Additionally, a prevention regime is being considered to require victims and businesses not covered by the ban to report their intentions to pay a ransom.

Concerns and feedback on the ban

UK Security Minister Dan Jarvis emphasized the importance of dismantling the cybercriminal business model and safeguarding essential services. The Home Office received feedback on the proposals from various organizations and individuals, with nearly three-quarters supporting a targeted ban on ransomware payments. However, there were mixed views on penalties for victims who violate the measures, leading to further exploration of appropriate penalties.

Global efforts to combat ransomware attacks

Countries like Australia and the United States have also taken steps to address ransomware threats by enacting laws that require reporting of such incidents. The UK's move to ban ransomware payments reflects a growing international effort to protect critical infrastructure and prevent cybercriminals from profiting off of malicious attacks.