How Ransomware Gangs Now Use Stolen Data Twice

Failed to add items

Sorry, we are unable to add the item because your shopping cart is already at capacity.

Add to basket failed.

Please try again later

Add to wishlist failed.

Please try again later

Remove from wishlist failed.

Please try again later

Adding to library failed

Please try again

Follow podcast failed

Unfollow podcast failed

How Ransomware Gangs Now Use Stolen Data Twice

Listen for free

View show details

Ransomware has evolved beyond encrypting files and demanding payment. In 2026, the most dangerous ransomware groups are double-dipping: they extort a ransom to decrypt your data, then sell the stolen data on dark web marketplaces. In this episode, Lucas and Luna dissect the business model behind modern ransomware, using the real-world case of the ALPHV/BlackCat attack on a mid-sized healthcare provider in May 2026. They explain why the old 'pay or lose access' threat is being replaced by a triple threat: encryption, data leak, and data sale. Lucas breaks down the economics — how a single attack can generate $12 million in illicit revenue — and why insurance policies are rewriting coverage clauses. Luna digs into the new SEC rules requiring public companies to disclose ransomware payments within four days, creating a perverse incentive for attackers to target publicly traded firms. The hosts also discuss why Cloudflare's stock dropped 9 percent this week despite strong earnings, and how the broader cybersecurity sector is pricing in a ransomware escalation. If you work in IT, finance, or compliance, this episode gives you the framework to understand the new ransomware playbook before your company becomes the next headline. #Ransomware #DoubleExtortion #ALPHV #BlackCat #Cybersecurity #DataBreach #SEC #DisclosureRules #CyberInsurance #DarkWeb #HealthcareSecurity #Cloudflare #CRWD #PANW #Technology #BusinessPodcast #FexingoBusiness #CybersecurityPodcast Keep every episode free: buymeacoffee.com/fexingo

No reviews yet