Threat Actor Negotiations – avoiding the pitfalls, navigating a successful resolution

You have been hit with a ransomware attack, DDoS or an unauthorised intrusion resulting in a data breach and are being extorted by a financially motivated adversary. During this session we will explore the benefits and risks associated with threat actor negotiations and how this can be leveraged for your own advantage during incident response investigations. Furthermore, we will address best practices including those surrounding due diligence and sanctions awareness based on extensive Kivu frontline case studies, to enable organisations to prepare for the inevitable.

Key Takeaways:

• Ransomware lifecycle
• Is it legal to pay a ransom?
• Due diligence and sanctions
• Benefits vs. risks with engaging a threat actor
• Negotiation best practices