An 81-page document issued by a so-called Ransomware Task Force makes no mention of Windows or Microsoft, apart from the fact that one of the co-chairs who drafted this document is from this company.
This is the best indicator of exactly what this exercise in verbiage is all about; it is merely another eyewash to divert attention away from the fact that practically all the attacks that have caused the private and public sector enormous grief have been on systems running Windows.
Recognising the cause is the best way to get rid of the effects, but naming the main culprit would have put more than a few noses out of joint. Hence, we have this exercise, which was described by one cynical security industry person as “all fart and no poo”.
I remain genuinely concerned that a small number of apex ransomware groups are getting hundreds of millions of US dollars in payment each year.
That gives them more money to buy zero day exploits than many big nation states.
It’s like giving rocket launchers to YouTuber fans.
— Kevin Beaumont (@GossiTheDog) April 29, 2021
It is testimony to Microsoft’s clout in the security industry and its ability to spin and hire the best PR people that it has not invited the wrath of those who have suffered from ransomware attacks.
The Institute for Security and Technology, a non-profit under whose aegis this document was drafted, says it is “dedicated to advancing solutions to national security…