FinCEN: U.S. banks paid $1.2B to ransomware criminals last year
By 
Adrianne Appel2022-11-02T15:25:00
Banks reported paying a record $1.2 billion to ransomware criminals in 2021, the Financial Crimes Enforcement Network (FinCEN) announced Tuesday.
Ransomware attacks occur when criminals gain access to a computer network and electronically lock it until a “ransom” is paid. The software they use is often sold among criminals via the dark web. They usually demand payment in cryptocurrency.
Many institutions are being attacked, but banks are required under the Bank Secrecy Act to log suspicious activity reports (SARs) and ransomware attacks, including amounts, to FinCEN.
THIS IS MEMBERS-ONLY CONTENT
You are not logged in and do not have access to members-only content.
If you are already a registered user or a member, SIGN IN now.
Related articles
-
News BriefFinCEN annual report: How DOJ, IRS use SARs to aid probes
The Financial Crimes Enforcement Network’s year in review for fiscal year 2022 provides details on how other U.S. agencies use information derived from the millions of suspicious activity reports filed each year to support their enforcement efforts.
-
News BriefTreasury report flags benefits, drawbacks to use of cloud services
The Treasury Department issued a report regarding the benefits and challenges associated with the use of cloud service providers by financial sector firms, finding shortcomings related to transparency, staff support, and cybersecurity incident response.
-
PremiumStudy: Healthcare overtakes finance as most breached industry in 2022
Healthcare organizations were under attack more than ever by cybercriminals in 2022, overtaking finance as the most breached industry, according to the latest analysis from Kroll.
More from Cybersecurity
-
News BriefU.K. says company boards need to worry more about cybersecurity risks
The U.K. government wants directors and boards of directors to become more actively involved in cybersecurity risks facing public and private companies, as the world faces “alarming” threats from criminal gangs and malicious nation-states. Though many organizations take cybersecurity seriously, the U.K. government says they do not place management of ...
-
PremiumNavigating compliance: A guide for small teams to tackle CMMC
Many small organizations within the Defense Industrial Base are struggling to meet the rigorous requirements validated through the Cybersecurity Maturity Model Certification, writes Thomas Graham, CISO at Redspin. If you haven’t been tracking it closely, CMMC was finalized in October, with an effective date of December 16, 2024.
-
PremiumFinancial crime in the shadows of the dark web
The dark web has been depicted as a long-standing hub for crimes, where illegal activities such as drug dealing, financial fraud, weapon sales, murder for hire, stolen credit cards, and ransomware gags are easily accessible to the public.