UK Eyes Ban on Public Sector Ransom Payments

The UK government is considering a ban on ransomware payments by public sector organizations and critical infrastructure to combat the growing threat of cybercrime. This proposal, currently under consultation, would prohibit entities such as the NHS, schools, and local councils from paying ransoms, aiming to undermine the financial incentives for cybercriminals. The initiative follows a series of high-profile ransomware attacks, including one on London hospitals, and targets gangs, often linked to Russian groups, that have profited significantly from such crimes. Alongside the ban, the government plans to introduce mandatory reporting of ransomware incidents to improve intelligence and support law enforcement efforts. Security Minister Dan Jarvis emphasized the importance of cutting off the financial pipelines of these criminal networks, which are estimated to have gained $1 billion globally in 2023. The proposals also suggest a payment prevention regime, potentially requiring government approval for any ransom payments by organizations not covered by the ban.