Double extortion
Definition
A ransomware tactic in which the attacker exfiltrates data before encrypting it, then demands payment both for the decryption key and for non-publication of the stolen data. First observed at scale with the Maze ransomware group in 2019, now standard practice among organised ransomware operations.
Related terms
- Command and control (C2)
- The channel through which an attacker sends instructions to malware on a compromised host and receives data back. C2 channels range from...
- Credential stuffing
- An automated attack that replays username-password pairs from previous data breaches against new target services, exploiting the widespread reuse of passwords across...
- FAFT Virtual Asset guidance
- Guidance from the Financial Action Task Force requiring member states to regulate virtual asset service providers (cryptocurrency exchanges) as financial institutions, applying...
- Image-based sexual abuse (IBSA)
- The non-consensual creation, capture, or distribution of intimate sexual images. The term encompasses non-consensual intimate image sharing (formerly called revenge porn), upskirt...
- Synthetic identity fraud
- The creation of a fictitious identity by combining real and fabricated personal data elements, such as a genuine national ID number paired...
Explained in
- Ransomware, Identity Theft and Online ExploitationA ransomware tactic in which the attacker exfiltrates data before encrypting it, then demands payment both for the decryption key and for non-publication of th...