Forget everything you thought you knew about ransomware. Today’s threat actors aren’t locking your files—they’re stealing your data and threatening to leak it unless you pay up.

In this episode, we dive into the rise of data-only extortion campaigns and explore why encryption is becoming optional for cybercriminals. From real-world trends like the rebrand of Hunters International to “World Leaks,” to the strategic impact on insurance, PR, and compliance—this is a wake-up call for security teams everywhere.

If your playbook still ends with “just restore from backup,” you’re not ready.

Takeaways for Security Teams:

• Rethink detection: Focus on exfiltration, not just malware.

• Update tabletop exercises: Include public leaks, media scrutiny, and regulatory responses.

• Review insurance policies: Ensure data-only extortion is covered, not just encryption events.

• Prepare execs and PR: Modern extortion targets reputation and compliance pressure points.

Resources & Mentions:

• https://www.coveware.com/ransomware-quarterly-reports

• Security Boulevard: Hunters International Rebrands as World Leaks:

• https://attack.mitre.org/resources/

• LMG Security