Double extortion involves encrypting files and threatening to release sensitive data publicly. Victims face pressure to pay to avoid reputational damage. Even organizations with backups are at risk. This approach has increased ransom amounts and attack frequency. Attackers exploit fear, privacy regulations, and media attention.
It matters because organizations must protect data confidentiality alongside availability. Legal consequences can follow breaches.
It also drives investment in encryption and secure data practices.
Double extortion ransomware encrypts files and threatens public data release.
[Trend Micro, trendmicro.com]