Hello, you are using an old browser that's unsafe and no longer supported. Please consider updating your browser to a newer version, or downloading a modern browser.
Training Camp • Cybersecurity Glossary
Double extortion ransomware encrypts and steals data, then threatens to leak it unless paid, pressuring victims even when backups exist.
Double Extortion Definition: Double extortion ransomware encrypts and steals data, then threatens to leak it unless paid, pressuring victims even when backups exist.
Double extortion is a ransomware tactic in which attackers both encrypt a victim's data and exfiltrate a copy before encryption, then threaten to publicly leak or sell the stolen data unless a ransom is paid. This pressures victims even when they can restore from backups, because paying may be the only way to prevent public disclosure of sensitive information. The technique became widespread around 2019 to 2020 with groups such as Maze.
Turn knowledge into credentials with our instructor-led cybersecurity boot camps.
View All Courses →