The public and private sectors cannot agree on banning ransomware payments. The Justice Department has elevated ransomware investigations to the same priority level as terrorism.
- Gen. Gregory Touhill, former federal chief information security officer and now director of the CERT Division at the Software Engineering Institute, said he does not think the government should necessarily ban making ransomware payments because it gets into the risk management decisions of businesses.
- Touhill said the federal government has a policy of never paying ransom, which helps protect it against attacks.
- Law enforcement organizations in the United States and across the world must collaborate to track down ransomware hackers and prevent them from moving forward, said Touhill.