August 9, 2024 at 02:12PM
At Black Hat USA, a panel discussed hackers’ increasing attempts to manipulate media post-data breaches. Criminal groups aim to build credibility through media attention, using extortion and threats to push victims into paying. Journalists stress the importance of verifying hacker claims and providing accurate information, despite pressure from both hackers and victims.
From the meeting notes, it’s clear that hackers are utilizing the threat of going to the press as a tool to gain leverage and credibility when extorting their victims. The panel identified that hackers are seeking media attention to build their brand and reputation, and they often reach out to journalists or media outlets after a breach occurs. However, journalists and incident investigation teams are cautious in considering the veracity of the claims made by hackers, with a focus on verifying information before pursuing a story.
It was emphasized that there are significant differences in how incident investigation teams and journalists approach a breach. While investigators aim to gather organized information about the response, journalists are committed to telling the truth and informing the public accurately. This creates a challenge in finding a middle ground that doesn’t fall into the trap laid out by hackers. One approach mentioned was a better understanding of the incident response process, with an emphasis on clarity and effective communication from the victim’s side to manage expectations and explain the complexities involved in the response.
In summary, the meeting discussed the evolving tactics of hackers in leveraging media attention for extortion and highlighted the need for clear communication from victims during the incident response process to effectively manage the situation.