Is there any totalitarian current or former Communist country that isn’t operating its own group of hackers targeting Americans? And are we at some point going to do something about it? Or is D.C. going to double down on failing to protect Americans from foreign criminals?
A ransomware group from Cuba has attacked 49 entities in five critical infrastructure sectors in the US and made at least $43.9 million in ransom payments, the Federal Bureau of Investigation (FBI) said.
The hacker group is targeting enterprises in the financial, government, healthcare, manufacturing and information technology sectors.
Cuba ransomware actors have demanded at least $74 million and received at least $43.9 million in ransom payments.
The US has experienced the most reported incidents in the second quarter this year.
Considering how tightly restricted the internet is in Cuba, it’s quite implausible that this group is operating outside government control.
We’ve already seen the North Koreans and a number of other smaller Communist countries running their own hackers, or appearing to.
Although the group uses the name Cuba, some security researchers in Israel suspect the ransomware gang is actually based in Russia, a country that refuses to extradite criminal hackers to the US.
Much like the Nork hackers are quite possibly fronts for a Chinese operation. Call it proxy cyberwarfare in which the criminals operate through a smaller allied country with less to lose. Whatever the truth is, a wide range of enemies feel very comfortable attacking the United States.
And the Biden administration feels equally comfortable doing nothing about it.