The attack on Colonial Pipeline has focused the attention of the FBI and White House on the DarkSide ransomware developers and its operators.
The DarkSide ransomware hit the Colonial Pipeline on Friday, forcing the company to take its main distribution lines offline to recover.
Slowing or stopping the global ransomware threat will take cooperation among government, enterprises, and law enforcement.
Researchers shed light on the FiveHands ransomware, which was deployed after a threat group exploited a now-patched SonicWall flaw in January.
A ransomware task force has proposed a variety of technical, policy, and regulatory means for disrupting ransomware, including tracking Bitcoin transactions more closely and mandating ransom payment disclosures.