18 points by adulion 2 hours ago
The idea that the spending needs to grow linearly with the growth is a damning indictment of the mindset of the vast ineffectual mess that is the cybersecurity industry.
It’s not a popularly held mindset, either within the security industry or outside of it. This piece seems to be pitched at salespeople whose only job is to extract money from other companies.
Basic hygiene security hygiene pretty much removes ransomware as a threat.
It seems obvious to me that the only real solution is to penalize the payment of ransoms. For the same reasons on doesn't negotiate with terrorists.
Is there some reason to believe that this isn't the best approach? And if not, then any theories as to why it hasn't been enacted?
I think this article mostly shows that publicly announcing a successful ransoming of a company is now more popular than a couple years back.
Thanks, Satoshi