Hello, you are using an old browser that's unsafe and no longer supported. Please consider updating your browser to a newer version, or downloading a modern browser.
Training Camp • Cybersecurity Glossary
Encryption-less extortion steals and threatens to leak data without encrypting files, letting attackers extort victims faster while avoiding ransomware detection.
Encryption-less Extortion Definition: Encryption-less extortion steals and threatens to leak data without encrypting files, letting attackers extort victims faster while avoiding ransomware detection.
Encryption-less extortion (also called data extortion or exfiltration-only ransomware) is an attack in which adversaries steal sensitive data and threaten to publish or sell it, but skip encrypting the victim's files entirely. Forgoing encryption lets attackers move faster, avoid the operational complexity and detection risk of deploying ransomware payloads, and still extract payment by threatening data leaks and regulatory exposure. Groups such as Cl0p and BianLian have increasingly adopted this model.
Encryption-less Extortion is one of the topics you'll master in the Security+ Boot Camp.
Security+ Boot Camp →