Palo Alto Networks Certified Detection and Remediation Analyst (PCDRA) — Question 74

What motivation do ransomware attackers have for returning access to systems once their victims have paid?

Answer options

• A. Failure to restore access to systems undermines the scheme because others will not believe their valuables would be returned.
• B. The ransomware attackers hope to trace the financial trail back and steal more from traditional banking institutions.
• C. There is organized crime governance among attackers that requires the return of access to remain in good standing.
• D. Nation-states enforce the return of system access through the use of laws and regulation.

Correct answer: A

Explanation

The correct answer is A because ransomware attackers rely on their reputation to ensure future payments; if victims do not regain access, it would deter others from paying. Option B is incorrect as attackers typically do not trace back to traditional banks for further theft. Option C is false since there is no formal governance among attackers, and option D is incorrect because nation-states do not regulate individual ransomware incidents.