Insurance
Home›Insurance›Industry & Deals›AI-run ransomware encrypted data but could not collect…
AI-run ransomware encrypted data but could not collect payment
Sysdig researchers said the automated attack lacked key elements of real extortion, including a payment-receiving setup and evidence of stolen data being exfiltrated.
Insurance Journal highlights a July 1 Sysdig study describing an automated ransomware incident that ran end to end without human direction. The AI agent broke into a company’s systems, worked its way to the central database, encrypted what it found, and left a note demanding payment in Bitcoin.
The analysis emphasizes that the attempt could not realistically pay out even if a victim agreed to pay. The piece says the ransomware did not preserve or provide any payment “spare key,” there was no indication the note’s contact address was actively monitored, and a claim that stolen data had been copied to a separate server was not supported by evidence.
According to the report, researchers documented more than 600 discrete actions, with the AI agent producing plain-language explanations of what it was doing, including diagnosing an error creating an administrator account and producing a working fix in 31 seconds. While the speed and automation may sound like a new capability, the publication argues the operation was built in a way that omitted the machinery needed for actual extortion.
The article also draws a parallel to past ransomware events that demanded payment but failed to deliver. It cites the 2017 NotPetya outbreak, which demanded Bitcoin but had its payment channel shut down within hours and whose encryption was not reversible, with investigators later concluding the r
Latest closeBitcoin $62,836.57 ▼1.5%