Ransomware attacks are notoriously underreported and cyber authorities acknowledge this incomplete data on ransomware activity creates a blind spot that hampers recovery, response efforts and the prevention of future attacks.
U.S. officials and cybersecurity experts say greater transparency is needed to combat ransomware.
“It’s critically important that entities report every cyber intrusion, including ransomware attacks, to the Cybersecurity and Infrastructure Security Agency or the FBI as quickly as possible,” Eric Goldstein, the CISA’s executive assistant director for cybersecurity, said via email.