May 12, 2022

‘Double extortion’ – evolving ransomware tactic

Double extortion’ is the term given to an evolving ransomware tactic: first, steal confidential data, then encrypt the victim’s files.


Cybercriminal uses a database encryption attack to extort money but with an additional initial attack to ensure that the backup does not render the attack useless. Before a cybercriminal attack with ransomware, he hacks into the company’s database, extracts as much data as possible, and stores it on its servers. Then, the ransomware attack is launched in the normal way (this means carrying out combined attacks, in which, for example, a DDoS attack is triggered after a ransomware infection).

As the latest research shows the sector of small and medium-sized enterprises is the most exposed to double extortion attacks.


Here are some tips on how to prevent your company from cyberattacks:

๐Ÿ‘‰ Focus on preventive measures: conduct simulation attacks and penetration tests.

๐Ÿ‘‰ Provide regular security awareness training – increase employees’ awareness of possible dangers.

๐Ÿ‘‰ Ensure that security best practices have been implemented across all users.

๐Ÿ‘‰ Increase the security of your corporate e-mail inbox.

๐Ÿ‘‰ Introduce active and up-to-date antivirus software in your organization.

๐Ÿ‘‰ Protection against data leakage.

๐Ÿ‘‰ Good organization of the offline and online backup plan.

๐Ÿ‘‰ Business Continuity Plan in case of an incident.


These are just some of the recommended basic actions. You need to devote more time and attention to properly and, most importantly, effectively securing yourself and your organization.

Do you want to know more? Please contact us at


Magdalena Jaczewska-Hawryluk

Cybersecurity Consultant


Photo: Fili Santillรกn

Read more:

Deepfake – the dark side of AI. How criminals use artificial intelligence to blackmail businesses and politicians.

Technology, the development of which is intended to help humanity, is also used for evil purposes. More and more often, artificial intelligence becomes an ally of criminals, which helps them manipulate information, distort reality or blackmail. Business is often the victim.

NaviRisk a new member of the Swedish-Polish Chamber of Commerce

The Chamber connects Sweden with Poland and creates new business relations.   The main task of the Swedish-Polish Chamber of Commerce is to embrace this commitment and to support the members by facilitating their business activities focused on Sweden and Poland.   – Our strength lies in our members` successes and our job is to […]

Outlook 2023: the massive proliferation of intelligence techniques just started

Russia’s aggression against Ukraine will likely be remembered as a historic turning point in world economics and international relations but also as the beginning of a new era when it comes to anticipating threats and mitigating risks – writes in his analysis Ondrej Slechta – Associate Partner NaviRisk for Czechia and the Slovak Republic.   […]


NaviRisk Sp. z o.o.

ul. Huculska 5/6
00-730 Warsaw

+48 605 19 11 19


Do you have any questions? Write to us!