FBI Says Enhanced Partnerships Help Combat Ransomware SurgeBureau Touts ‘All-Time High’ Public-Private Coordination Despite Rise in Attacks
Enhanced interagency and public-private sector partnerships have allowed the U.S. federal government to better prevent and respond to the recent surge in ransomware attacks, top FBI officials said Wednesday.
Coordination between the FBI and agencies including the Cybersecurity and Infrastructure Security Agency and institutions in the healthcare and financial sectors "is at an all-time high," said Bryan Vorndran, assistant director of the FBI's cyber division.
Adversaries have developed "significant changes in tactics" over the last two years, Vorndran said while speaking at the Aspen Cyber Summit in New York City. The FBI has increasingly observed cybercriminals deploying techniques such as double extortion and dual payloads.
The FBI is also evolving its mitigation and response processes, FBI Deputy Director Paul Abbate said. Government anti-ransomware initiatives such as victim engagement and information and intelligence sharing across the federal enterprise and with the private sector "have significantly advanced" in recent years.
Abbate recalled how the FBI managed to prevent Iranian government-sponsored hackers from targeting the Boston Children's Hospital with a cyberattack in 2021 because the threat was detected in advance and shared with the bureau.
"We were able to take that information, get to the hospital and stop the attack before it occurred," he said. "That's where we want to be."
The FBI is working more closely with CISA to provide guidance on a range of cybersecurity issues, including ransomware response efforts. CISA launched the Joint Cyber Defense Collaborative, its flagship public-private sector information-sharing initiative, as part of an effort to better respond to cyberattacks targeting U.S. organizations.