May 12, 2022

‘Double extortion’ – evolving ransomware tactic

Double extortion’ is the term given to an evolving ransomware tactic: first, steal confidential data, then encrypt the victim’s files.

 

Cybercriminal uses a database encryption attack to extort money but with an additional initial attack to ensure that the backup does not render the attack useless. Before a cybercriminal attack with ransomware, he hacks into the company’s database, extracts as much data as possible, and stores it on its servers. Then, the ransomware attack is launched in the normal way (this means carrying out combined attacks, in which, for example, a DDoS attack is triggered after a ransomware infection).

As the latest research shows the sector of small and medium-sized enterprises is the most exposed to double extortion attacks.

 

Here are some tips on how to prevent your company from cyberattacks:

๐Ÿ‘‰ Focus on preventive measures: conduct simulation attacks and penetration tests.

๐Ÿ‘‰ Provide regular security awareness training – increase employees’ awareness of possible dangers.

๐Ÿ‘‰ Ensure that security best practices have been implemented across all users.

๐Ÿ‘‰ Increase the security of your corporate e-mail inbox.

๐Ÿ‘‰ Introduce active and up-to-date antivirus software in your organization.

๐Ÿ‘‰ Protection against data leakage.

๐Ÿ‘‰ Good organization of the offline and online backup plan.

๐Ÿ‘‰ Business Continuity Plan in case of an incident.

 

These are just some of the recommended basic actions. You need to devote more time and attention to properly and, most importantly, effectively securing yourself and your organization.

Do you want to know more? Please contact us at info@wearenavirisk.com

 

Magdalena Jaczewska-Hawryluk

Cybersecurity Consultant

 

Photo: Fili Santillรกn

Back to news

Read more:

January 20, 2026

Investigations in local operations โ€“ when headquarters need clarity on the ground

In international organizations, some of the most serious risks arise far from headquarters. They develop within local subsidiaries, branches or operational units, where management autonomy is high and direct oversight is limited. From our experience at NaviRisk, investigations are frequently commissioned by international owners, boards or headquarters in response to concerns related to local management […]

January 20, 2026

Fraud, Digital Footprint and Brand Protection โ€“ How to Safeguard Your Company

Learn how to prevent fraud, monitor digital footprint, and protect your brand. Proactive risk management improves security, reputation, and trust. In the digital era, every company faces unique challenges. Risks are increasingly complex, dynamic, and dependent on business context, industry, and scale. At NaviRisk, we work broadly acrossย risk management, security, and organizational resilience. In our […]

December 31, 2025

Cyber Threat Intelligence Analyst

At NaviRisk, we help international clients navigate complex risks by providing comprehensive analytical, systemic, and advisory support. As our company continues to grow dynamically, we are looking for a motivated and dedicated professional to join our team at our Warsaw office.   About the role: We are seeking a Cyber Threat Intelligence Analyst to support […]

CONTACT

NaviRisk Sp. z o.o.

ul. Huculska 5/6
00-730 Warsaw

+48 605 19 11 19 info@wearenavirisk.com

CONTACT FORM

Do you have any questions? Write to us!

Send message