OFAC Ransomware Guidance: An Overview
03/30/2022In October 2020, The United States Department of Treasury’s Office of Foreign Assets Control (OFAC) released an advisory to all companies facilitating payments for victims of ransomware attacks, including cyber insurance firms, financial institutions, and forensics and incident response firms. The advisory warns that making payments to any sanctioned entity listed on the Treasury Department’s Specially Designated Nationals and Blocked Persons (SDN) List, embargoed countries, or anyone else deemed in violation may result in civil penalties. OFAC includes enforcement guidelines and encourages companies to incorporate this added concern into risk-based compliance programs.
To read more, please log in
Recent Junto Plus Articles
- How Ransomware Payments Have Evolved in 2023
- Essential Cybersecurity Strategies for Small-to-Medium Sized Businesses
- 13 Quick and Easy Tips for Stronger Personal Cybersecurity
- Understanding Cyber Risk for Manufacturing
- Top Cybersecurity Trends in 2023 for SMEs: Part 2
- Victims of Cybercrime Can Now Benefit From Cyber Helpline USA
- Ransomware Payment Tracking
- The Global Cyber Threats Your Company Needs To Know About: Part 2
- The Global Cyber Threats Your Company Needs to Know About: Part 1
- Understanding & Managing Cyber Risk for Cyber Insurance Coverage
- Navigating Cybersecurity Regulations: An In-Depth Look at SP 800-171
- A Q&A with Rory Egan of Munich Re
- Know the Components of an Incident Response Plan
- Cyber Trends and Advice from a Midwest Law Firm
- Cybersecurity Maturity Model Certification 101
- How to Vet Third-Party Vendors and Providers
- Top Cybersecurity Controls for SMEs in 2023
- Dissecting the Surge in Data Privacy Claims Against Meta / Facebook
- Board Members' Role in Cybersecurity Incident Response
- Understanding Data Poisoning Attacks
This site is operated by NetDiligence®. Links found within this site may open a new browser window and take you outside the eRiskHub to another website, the contents of which are maintained by third parties over whom NetDiligence has no control. We provide links to these external sites for your convenience and awareness. We accept no responsibility for the content of linked sites. Upon request of the content source, we will remove links.
© =date('Y');?> NetDiligence®, A Company of Network Standard Corporation