The Lawfare Podcast Lawfare Daily: ‘Ransom War’ with Max Smeets
14 snips
Jun 26, 2025 Max Smeets, Co-Director of Virtual Routes and Senior Researcher at ETH Zurich, delves into ransomware's evolution and its alarming implications for national security. He discusses the 'trust paradox' in ransomware groups and their complex internal dynamics. Smeets also explores the sophisticated 'triple extortion' tactics used by cybercriminals, the geopolitical ties involving state actors, and challenges in international collaboration to combat these threats. The conversation highlights the need for pragmatic government responses to ransomware payments, emphasizing a reevaluation of strategies to tackle this growing menace.
AI Snips
Chapters
Books
Transcript
Episode notes
Evolution of Ransomware Extortion
- Ransomware evolved from simple data encryption to include double and triple extortion tactics.
- This includes stealing data and threatening to leak it, alongside DDoS attacks to pressure victims.
Framework for Ransomware Groups
- Ransomware groups have distinct business characteristics: modus operandi, organizational structure, and branding.
- Branding and reputation are crucial for recruiting affiliates and gaining victims' trust.
Ransomware Trust Paradox
- Ransomware groups face a trust paradox: they must deceive yet earn victims' trust to receive payment.
- They build trust by proving decryptor capability, maintaining communication, and protecting their reputation.
