Why Are the US and Russia Negotiating Over Ransomware Threats?

In the past two months, major US critical infrastructure and enterprises have suffered large‑scale cyberattacks, with the perpetrators traced to Russian‑linked ransomware groups such as REvil and DarkSide.

On July 11, Security Affairs reported that President Biden and President Putin discussed the issue by phone, with Biden expressing concern over the ransomware surge.

Biden called on Russia to take action against the ransomware organizations to protect US critical infrastructure and private companies.

The White House press secretary Jen Psaki reiterated that the President emphasized Putin’s responsibility to dismantle these ransomware gangs, noting no direct evidence of Russian government command but stressing Russia’s duty to act.

Psaki added that if the Russian government does not act, the United States will target ransomware groups operating within Russia.

Following the Colonial Pipeline and JBS attacks, the White House’s chief cybersecurity advisor warned US firms to adopt security measures, and G7 leaders urged Russia to urgently combat ransomware groups based in its territory.

“Biden‑Putin” Talks Focus on Cybersecurity

On June 16, Biden and Putin met in Geneva for their first face‑to‑face summit, discussing cyber threats and the danger of criminal groups operating from Russia.

Biden stated that Russia must curb cybercrime originating from its soil, warning that the US will retain the right to act if Russian authorities continue to tolerate ransomware operations.

Putin denied involvement in recent attacks on major US industries and claimed most cyberattacks originate from the United States, while acknowledging the meeting was “constructive” and that both sides agreed to negotiate on cybersecurity.

During the summit, Biden presented a list of 16 critical infrastructure sectors that the US deems off‑limits for attacks; any ransomware activity against these sectors would trigger a strong US response.

The listed sectors include energy, water, healthcare, emergency services, chemicals, nuclear, communications, government, defense, food, commercial facilities, IT, transportation, dams, manufacturing, and financial services.

Reference Links:

https://securityaffairs.co/wordpress/119961/cyber-crime/biden-putin-phone-call-ransomware.html https://www.foxbusiness.com/politics/biden-putin-critical-infrastructure-entities-off-limits-cyberattacks https://www.bleepingcomputer.com/news/security/biden-asks-putin-to-crack-down-on-russian-based-ransomware-gangs/ https://www.foxnews.com/politics/putin-no-hostility-biden-meeting-press-conference