Inside the Ransomware Negotiation Economics

Explore the economics and negotiation strategies behind targeted ransomware attacks in this 23-minute Black Hat conference talk. Delve into the world of digital extortion, classified as the most prominent form of cybercrime and the most devastating threat to IT environments. Learn about the three main topics covered: the two price tags in ransomware attacks, thinking like an attacker from an economic perspective, and effective negotiation strategies. Discover insights on data collection, the introduced Return on Ransom (RoR) metric, and practical negotiation tactics such as being respectful, asking for more time, and convincing adversaries of financial limitations. Gain valuable knowledge on handling ransomware situations, including the importance of discretion regarding cyber insurance coverage.

Intro
Two price tags
Economics - think like an attacker
A simple decision question?
Data collection
Introducing the metric. (RoR)
Negotiation strategies
Be respectful
Ask for more time
Promise to pay a small amount now or a larger amount later.
Convince the adversary you cannot the the high ransom amount
If possible do not tell anyone you have cyber Insurance
Conclusion