Login

Help

BI’s Article search uses Boolean search capabilities. If you are not familiar with these principles, here are some quick tips.

To search specifically for more than one word, put the search term in quotation marks. For example, “workers compensation”. This will limit your search to that combination of words.

To search for a combination of terms, use quotations and the & symbol. For example, “hurricane” & “loss”.

Login Register Subscribe

Treasury issues updated guidance on ransomware payments

Reprints
Cyber Risks Emerging Risks Regulation Technology More + Less -
ransomware

The U.S. Department of Treasury’s Office of Foreign Assets Control issued updated guidance Wednesday on potential sanctions risks for facilitating ransomware payments, stating it will consider the reporting of ransomware attacks to government agencies in enforcing its policy.

The guidance is essentially the same as the one issued by OFAC last October in warning that the U.S. government “strongly discourages” all private companies and citizens from paying ransom or extortion demands.

An added section labeled “Cooperation with OFAC and Law Enforcement,” states another factor it will consider under its enforcement guidelines is reporting ransomware attacks to appropriate government agencies “including whether an apparent violation of U.S. Sanctions is voluntarily disclosed.”

In these cases, it said, it would be “more likely” to issue a “non-public response,” such as a “No Action” or “Cautionary” letter, the new guidance said.

 

 

 

 

 

Read Next

Related Stories

Most Read in Risk Management

Sign up for Daily Briefing, the free email newsletter from Business Insurance.

About

Advertise

Reprints and Licensing

Resources

. Privacy PolicyTerms of Use

COPYRIGHT © 2024 BUSINESS INSURANCE HOLDINGS

Member, Beacon International Group, Ltd.