The Plague of Ransomware and Cyber-Attacks: Challenges and the Road Ahead

Sean McDonald*

Published on September 1, 2021 | Manuscript Number: 2021/LNLR/01060 | Page Numbers: 60-68

​

Abstract: Cyber and ransomware attacks across the globe have been a troubling issue faced by Governments and Companies alike. Crucial systems are encrypted and personal data of consumers are breached by hackers. Victims are forced to pay massive amounts in ransom in cryptocurrency to recover these systems. Data of consumers finds its way to the dark web which ransomware attacks through the lens of the recent Colonial Pipeline incident, the aftermath of which opens up a sea of further consequences. This article explores the concept of rah created some interesting outcomes which might depict a way to proactively target the perpetrators of these attacks. The article also highlights the prevailing situation in India with regards to ransomware attacks and data breaches and analyses the situation from a legal perspective looking at both the current IT rules governing data breaches, the roles and functions of the nodal agency CERT-In and the possible changes that we can expect with the incoming Personal Data Protection Bill, 2019 regarding questions of reporting data breaches, penalties and steps to mitigate damage. The author suggests the shortcomings and changes required to build a better framework. As a conclusion, the author calls for a two-pronged approach consisting of proactive targeting by agencies to monitor and apprehend the perpetrators of these attacks as well as strong framework to tackle and mitigate damage in the event of a breach/attack.

​

Keywords: Ransomware, Data Breach, Legal Consequences, Data Protection.

​

​

​

*School of Law, Narsee Monjee Institute of Management Studies, Bengaluru

Cite as: Sean McDonald, The Plague of Ransomware and Cyber-Attacks: Challenges and the Road Ahead (2021) 1(2) LKO. L. REV. 60