Please feel free to contact me anytime to share your thoughts: +1 612.357.1544 (cell), +1 952.567.6215 (direct), gerry.zack@corporatecompliance.org.
I recently had an odd source of inspiration about compliance and ethics programs, born from the heightened discussion about ransomware in recent news. The individuals behind ransomware have targeted a variety of victims, from pipelines to hospitals, usually selecting organizations based on their apparent ability to pay ransoms more so than for ideological or other reasons. Two things surprised me in my research on ransomware. First, these groups are highly organized, complete with standards, policies, and procedures governing everything from how they identify targets to how they negotiate ransoms.