The White House is working to finalise a new policy outlining how governments should respond to ransomware attacks, including sharing information on attackers and the accounts they use to collect ransoms, a senior administration official with knowledge of the matter said.
Ransomware hits a range of industries every year, from schools and hospitals to critical infrastructure departments and the government.
Analysts say ransomware attackers also increasingly steal sensitive data to extort victims.
The White House has long advised against paying ransoms and has been pushing other countries to make the same commitment.
During the third International Counter Ransomware Initiative, the administration will announce “significant” outcomes, including initiatives for sharing information on the ransomware attackers between counties.
“We’re committing to sharing bad wallets – wallets that are used to move illicit ransom funds – as well as a number of other related projects,” the official said.
Figuring out the scale of ransomware attacks can be tricky because many companies don’t report them.
According to the data platform Statista, globally organizations detected 493.33 million ransomware attack attempts last year.
The criminals behind these hacks often used data from victims in one country to wage attacks on organisations in another country, which makes alliance across countries essential in fighting them, the official said.
A US-led alliance aimed at tackling these threats now includes 50 countries – from Nigeria and Costa Rice to Singapore and South Korea – said the official, adding that the Interpol and the European Union were also part of it.
That geographical breath reflects the US government belief that “we have to work to ensure that all the digital connectivity we rely on for our citizens is secure,” said the official.