This interview podcast episode features Allan Liska, a ransomware expert, discussing the current ransomware landscape. The hosts and Allan explore the surprisingly robust and profitable business model behind ransomware, including the "ransomware-as-a-service" ecosystem and the increasingly aggressive tactics used by attackers. Allan highlights the need for better data governance and improved basic security practices (asset, identity, and data management) to combat ransomware attacks, emphasizing that even seemingly simple measures like patching known vulnerabilities and changing leaked passwords can significantly improve defenses. He also discusses the evolving role of cyber insurance and the need for more transparent reporting of ransomware incidents. The discussion concludes with recommendations for organizations seeking to improve their ransomware defenses, including utilizing resources like the CISA KevList and Troy Hunt's Have I Been Pwned.
