Top US Lawmaker Presses Big Companies on Ransomware Crypto Payments

Paying international criminals to unlock data “will put an even bigger target on the back of critical infrastructure,” says U.S. Rep. Carolyn Maloney.

AccessTimeIconJun 3, 2021 at 9:38 p.m. UTC
Updated Aug 21, 2021 at 7:29 p.m. UTC

Presented By Icon

Election 2024 coverage presented by

Stand with crypto

U.S. Rep. Carolyn Maloney (D-N.Y.) wants Colonial Pipeline and CNA Financial to disclose the decision-making processes that led them to pay cryptocurrency to recover data from ransomware attackers.

In letters sent to the firms Thursday, Maloney asked for documents outlining how these victims decided to pay the perpetrators, any documents or communications received from the attackers, whether any government agencies provided input and whether the firms checked to ensure they didn’t violate sanctions.

  • Bitcoin Mining in the U.S. Will Become 'a Lot More Decentralized': Core Scientific CEO
    13:18
    Bitcoin Mining in the U.S. Will Become 'a Lot More Decentralized': Core Scientific CEO
  • Binance to Discontinue Its Nigerian Naira Services After Government Scrutiny
    05:10
    Binance to Discontinue Its Nigerian Naira Services After Government Scrutiny
  • The first video of the year 2024
    04:07
    The first video of the year 2024
  • The last regression video of the year 3.67.0
    40:07
    The last regression video of the year 3.67.0
  • “I am extremely concerned that the decision to pay international criminal actors sets a dangerous precedent that will put an even bigger target on the back of critical infrastructure going forward,” the chair of the House Oversight Committee said in a statement.

    In the letters, Maloney asks for “all responsive documents” that detail how the attack was discovered, whether the companies sought external consultation about paying the ransoms and documents detailing the decryption tools provided by the attackers. She set a June 17 deadline, giving the companies two weeks to gather these materials. 

    The letters come as another high-profile firm, global meat producer JBS, begins recovering from a ransomware attack that occurred over the weekend.

    A spokesperson for the committee did not immediately return a request for further comment about the focus of the investigation.

    Growing scrutiny

    Thursday’s letter comes as scrutiny around ransomware attacks and the crypto used to pay these ransoms ramps up in the U.S. government. Earlier in the day, the Department of Justice sent a memo to U.S. attorney offices and branches in all 50 states, asking them to file an “urgent report” if they hear of a significant ransomware attack.

    The DOJ is also coordinating ransomware investigations out of a central task force. John Carlin, acting deputy attorney general, told Reuters the goal is to find connections between different actors in an effort to mitigate the entire chain of attacks.

    President Joe Biden has also directed the federal government to evaluate how it responds to ransomware attacks. This review will require the federal government to “expand” its cryptocurrency analysis tools, a White House spokesperson said.

    The House Homeland Security Committee held a hearing on ransomware payments in May, and has another scheduled on June 9 to conduct a post-mortem on the Colonial Pipeline attack. Maloney is not a member of this committee, but previously published a joint statement with Rep. Bennie Thompson, the Homeland Security Committee chair, saying they were “disappointed” that Colonial did not provide specific information about paying a ransom.

    CORRECTION (June 3, 2021, 21:56 UTC): Corrects that the Homeland Security Committee held a hearing last month, not the Oversight Committee.

    Disclosure

    Please note that our privacy policy, terms of use, cookies, and do not sell my personal information have been updated.

    CoinDesk is an award-winning media outlet that covers the cryptocurrency industry. Its journalists abide by a strict set of editorial policies. CoinDesk has adopted a set of principles aimed at ensuring the integrity, editorial independence and freedom from bias of its publications. CoinDesk is part of the Bullish group, which owns and invests in digital asset businesses and digital assets. CoinDesk employees, including journalists, may receive Bullish group equity-based compensation. Bullish was incubated by technology investor Block.one.


    Learn more about Consensus 2024, CoinDesk's longest-running and most influential event that brings together all sides of crypto, blockchain and Web3. Head to consensus.coindesk.com to register and buy your pass now.