Call It What It Is: When Ransomware Becomes Terrorism | An Interview with Cynthia Kaiser | Redefining CyberSecurity With Sean Martin — On Location at InfoSecurity Europe 2026 cover art

Call It What It Is: When Ransomware Becomes Terrorism | An Interview with Cynthia Kaiser | Redefining CyberSecurity With Sean Martin — On Location at InfoSecurity Europe 2026

Call It What It Is: When Ransomware Becomes Terrorism | An Interview with Cynthia Kaiser | Redefining CyberSecurity With Sean Martin — On Location at InfoSecurity Europe 2026

Listen for free

View show details
A ransomware crew can run through your whole company between dinner and dessert. Sean Martin sat down with Cynthia Kaiser — twenty years at the FBI, now leading the Halcyon Ransomware Research Center — on the speed of the threat, the human cost the industry keeps abstracting away, and why a slice of ransomware deserves a harder name than “crime.” 📺 Watch | 🎙️ Listen | seanmartin.com Put your phone face-down at dinner on a Wednesday. Pick it up an hour later. In that time, an entire ransomware attack can have run through your company, start to finish. Wednesday is the favorite, Cynthia Kaiser told Sean Martin at InfoSecurity Europe, because the crews want you to walk in Thursday morning and find it. The fastest groups now go from break-in to full encryption in about four hours, sometimes under one. Humans do not move at that speed. The machines attacking us do. Kaiser knows the tempo. She spent twenty years at the FBI, finishing as Deputy Assistant Director of its Cyber Division, and now runs the Ransomware Research Center at Halcyon. She has watched this threat from the side of the government that hunts it and the industry that sells against it, and the thing she most wants to pass along has nothing to do with technique. We should all be angrier about cybercrime than we are. Her reason is the part the industry keeps abstracting away. We picture cybercrime as something that happens on a keyboard, to a network, to a number. Kaiser saw the other end of it: more than seventy-five thousand sextortion cases reported in the US in a single year, over twenty billion dollars in losses, and in one case thirty-eight victims referred to support services over the risk of suicide. The damage does not stay on the screen. It walks into homes. When a ransomware crew steals a hospital’s files and then phones the patients directly, or calls a CEO to say they will burn his house down, Kaiser stops calling it crime. Those are predators, she says, people who know they are endangering lives and have decided it is someone else’s problem. There is an older word for that, and the word is terrorism. Most ransomware is ordinary crime. A slice of it is not, and she argues we should name that slice honestly instead of filing it under a tidy technical category. Naming matters, because the other side is organized like a business, and lately like a software company. Kaiser’s team watched the market for criminal AI tools jump from thirty-eight forum posts in December to more than fourteen hundred two months later. Free tiers, paid upgrades for power users, the same tool mirrored across platforms for resilience. The technical people refine the product on the forums, then it graduates to the Telegram channels for buyers who could not build it themselves. Software-as-a-service, sold to extortionists. The product that should worry you most is an AI call center. No humans involved, a hundred and twenty simultaneous calls in different languages, complete with simulated keyboard clicks so it sounds like a real office. Voice cloning now needs about three seconds of audio, which is enough to become your CEO on the phone. Kaiser’s advice is blunt: no voice on a call, however convincing, should ever grant access on its own. Sean kept pulling the thread back to a point my own conversation with Geoff White had raised a day earlier, the line between locking data and stealing it to extort. The same crews do both, Kaiser said, and a few have moved somewhere worse, into the place with the phone calls and the threats. There are no borders in cyberspace, which is why her proudest moments were joint operations like the LockBit takedown, the FBI and the UK’s National Crime Agency working as one. So what do we carry forward, and what do we leave behind? We carry the anger Kaiser is asking for, and the discipline of calling harm by its real name. We leave behind the comfortable fiction that any of this happens only on a keyboard. Sean’s full conversation with Cynthia Kaiser is linked below, with the rest of our InfoSecurity Europe coverage. Let’s keep thinking. — Marco Co-Founder ITSPmagazine & Studio C60 | Creative Director | Branding & Marketing Advisor | Journalist | Writer | On Location With Sean Martin And Marco Ciappelli | 🌎 LAX🛸FLR 🌍 About the Host Sean Martin, CISSP, is the co-founder and Director of Operations and Programming at ITSPmagazine, and the host of the Redefining CyberSecurity podcast. An information security and technology veteran of more than thirty years and a multiple-time CISSP, he led engineering and delivery for hundreds of cybersecurity products before turning to journalism and broadcasting. Through Redefining CyberSecurity he keeps pressing one question: if we are selling security insincerely, buying it indiscriminately, and deploying it ineffectively, how do we make it usable, honest, and a real source of business value? He teaches at Pepperdine’s Graziadio Business School and broadcasts ...
adbl_web_anon_alc_button_suppression_t1
No reviews yet