In an Arkansas Democrat-Gazette editorial, Sullivan Wright Technologies co-founder, Chris Wright, explains how ransomware has evolved into a more aggressive and damaging threat known as extortionware.

In the past, ransomware attacks typically involved criminals breaking into a company’s network, encrypting data, and demanding payment. If an organization had reliable backups, it could often restore its systems without paying. Extortionware changes that equation by adding another layer of pressure. Attackers steal sensitive data then threaten to release it publicly if payment is not made.

This approach puts both companies’ operations and reputation at risk. Stolen customer records, financial documents, or business files can be used to damage clients’ trust and create additional legal or regulatory concerns. Some attackers may even contact business partners or use public leak sites to prove they have stolen information.

Key takeaways from Chris include:

• Extortionware is more strategic than traditional ransomware. Attackers often research their targets, looking for organizations with heavy reliance on digital systems or weaker cybersecurity infrastructure.
• Timing is part of the threat. Cybercriminals may launch attacks during busy seasons, major projects, or reporting periods to maximize disruption and pressure.
• The barrier to entry is lower. Ransomware kits and criminal support services allow more attackers to participate, while AI can make phishing emails and fraudulent messages more convincing.
• Basic security gaps remain a major weakness. Many attacks succeed because organizations overlook fundamentals such as access controls, employee training, or system monitoring.
• Cyber hygiene is still essential. Businesses should use layered controls to identify, protect, detect, respond to, and recover from threats. Multifactor authentication, limited administrative privileges, regular updates, and strong employee training can all reduce risk.
• Incident response planning matters. Organizations should develop and practice response plans that include clear procedures and cyber insurance considerations.

In his column, Chris also emphasizes that extortionware is especially harmful because it targets trust, privacy, and business continuity. While new tools may support cybersecurity efforts, they cannot replace strong fundamentals. Organizations that prioritize practical cyber hygiene can make themselves harder targets and better prepared to recover if an incident occurs.