Security Experts:

Connect with us

Hi, what are you looking for?



Biden Sets Red Line for Putin Over Ransomware Attacks

US President Joe Biden delivered a stern warning Wednesday to Russian leader Vladimir Putin over ransomware attacks emanating from Russia, saying he was prepared to retaliate against any more cyber assaults on American infrastructure.

US President Joe Biden delivered a stern warning Wednesday to Russian leader Vladimir Putin over ransomware attacks emanating from Russia, saying he was prepared to retaliate against any more cyber assaults on American infrastructure.

Speaking after the two leaders’ first summit in Geneva, Biden said he laid down the line on Moscow not taking action against hackers who have extorted hundreds of millions of dollars from western governments, companies, and organisations from the safety of Russian soil.

“I pointed out to him we have significant cyber capability and he knows it,” Biden said in a press conference after their talks.

“He doesn’t know exactly what it is, but it’s significant. If in fact they violate these basic norms, we will respond.”

In a separate press conference following the three-and-a-half hours of discussions, Putin rejected the allegations and insisted that the United States itself was behind a large number of cyberattacks.

But he acknowledged that the issue was “extremely important” and said the two sides agreed to hold formal consultations on it.

“We need to drop all insinuations, sit down at an expert level and start working in the interests of the US and Russia,” Putin said.

– Pipeline, beef producer hacked –

Experts say Russia and neighbouring countries have become the hub of what is called “ransomware-as-a-service,” in which different groups work together to hack and then export a target, promising to free up blocked computers after being paid off.

US victims include hospitals, school systems, police departments, and myriad businesses.

Washington officials don’t believe the Russian government is directly involved, but say it harbours hackers that should be arrested.

“There is a lot of ransomware activity that is coming from (within) Russian borders, which isn’t being conducted by Russian government officials, but is being tolerated by the Russian government,” Assistant Attorney General John Demers told a conference held by the Cyberscoop media group on Wednesday.

“They’re not just tolerating this; they are actively getting in the way of US law enforcement efforts to combat this type of hacking,” Demers said.

The subject was ripe for discussion at the Geneva summit after Russia-based hackers hijacked the computers of a major US oil distribution network, Colonial Pipeline, on May 7 and demanded millions in ransom.

Weeks later, a different group of Russian hackers did the same with JBS, one of the world’s biggest meat processors, which paid $11 million in bitcoin to regain control of its IT systems.

Both hacks had significant economic impact in the United States: Colonial was forced to shut down fuel pipelines, forcing gas prices to soar, and beef prices rose as JBS had to curtail production.

Biden has fielded political criticism domestically for not taking any visible action in retaliation, though the US military’s Cyber Command declines to make public any actions it takes against adversaries.

The US leader said he delivered to Putin a list of 16 areas of crucial infrastructure like energy and water that are “off limits” to attack, drawing a red line for Moscow.

“I looked at him and said, ‘How would you feel if ransomware took on the pipelines from your oil fields?’ He said it would matter,” Biden said.

“Responsible countries need to take action against criminals that conduct ransomware activities on their territory,” Biden said.

“Will they act? We’ll find out,” he added.

Related: Biden Says ‘Looking’ at Russia Retaliation Over Cyberattack

Related: How the Kremlin Provides a Safe Harbor for Ransomware

Written By

AFP 2023

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join this webinar to learn best practices that organizations can use to improve both their resilience to new threats and their response times to incidents.


Join this live webinar as we explore the potential security threats that can arise when third parties are granted access to a sensitive data or systems.


Expert Insights

Related Content

Application Security

Cycode, a startup that provides solutions for protecting software source code, emerged from stealth mode on Tuesday with $4.6 million in seed funding.


Zendesk is informing customers about a data breach that started with an SMS phishing campaign targeting the company’s employees.

Management & Strategy

SecurityWeek examines how a layoff-induced influx of experienced professionals into the job seeker market is affecting or might affect, the skills gap and recruitment...


Satellite TV giant Dish Network confirmed that a recent outage was the result of a cyberattack and admitted that data was stolen.


The release of OpenAI’s ChatGPT in late 2022 has demonstrated the potential of AI for both good and bad.


The changing nature of what we still generally call ransomware will continue through 2023, driven by three primary conditions.


WASHINGTON - Cyberattacks are the most serious threat facing the United States, even more so than terrorism, according to American defense experts. Almost half...

Application Security

PayPal is alerting roughly 35,000 individuals that their accounts have been targeted in a credential stuffing campaign.