Hello, you are using an old browser that's unsafe and no longer supported. Please consider updating your browser to a newer version, or downloading a modern browser.

Global Accelerated Learning • Est. 1999
Glossary Term Double Extortion

Training Camp • Cybersecurity Glossary

What is Double Extortion?

Double extortion ransomware encrypts and steals data, then threatens to leak it unless paid, pressuring victims even when backups exist.

Glossary > Threats, Malware & Attacks > Double Extortion

Understanding Double Extortion

Double extortion is a ransomware tactic in which attackers both encrypt a victim's data and exfiltrate a copy before encryption, then threaten to publicly leak or sell the stolen data unless a ransom is paid. This pressures victims even when they can restore from backups, because paying may be the only way to prevent public disclosure of sensitive information. The technique became widespread around 2019 to 2020 with groups such as Maze.

Learn More About Double Extortion:

Ready to Get Certified?

Turn knowledge into credentials with our instructor-led cybersecurity boot camps.

View All Courses →