EPISODE · Jun 5, 2026 · 10 MIN
How Security Teams Are Using Ransomware Negotiations to Save Millions
from Cybersecurity Business with Fexingo: Security Companies, Breaches, and Enterprise Defense · host Fexingo
When ransomware hits, the conventional wisdom says 'never pay.' But in Episode 33 of Cybersecurity Business, Lucas and Luna explore the growing practice of professional ransomware negotiation — where specially trained third-party negotiators engage with attackers on behalf of victim companies. They break down the real numbers from a 2025 ransomware case involving a midsize healthcare network that saved $4.2 million by negotiating down a $5.8 million demand to $1.6 million. Lucas explains how negotiators use psychological framing, proof-of-life verification, and leverage from threat intelligence to drive down ransoms. Luna pushes back on the ethical and regulatory risks, including OFAC sanctions exposure and the debate over whether paying funds future attacks. The episode also covers the rise of insurance-mandated negotiation clauses and the emergence of boutique firms specializing in this high-stakes craft. A focused, numbers-driven look at one of the most controversial corners of modern cybersecurity. #RansomwareNegotiation #CybersecurityBusiness #CrisisManagement #IncidentResponse #Ransomware #EnterpriseSecurity #CyberInsurance #ThreatIntelligence #SecurityOperations #BusinessContinuity #CyberRisk #NegotiationStrategy #HealthcareCybersecurity #OFAC #ThirdPartyRisk #BusinessAndTechnology #FexingoBusiness #BusinessPodcast Keep every episode free: buymeacoffee.com/fexingo
What this episode covers
When ransomware hits, the conventional wisdom says 'never pay.' But in Episode 33 of Cybersecurity Business, Lucas and Luna explore the growing practice of professional ransomware negotiation — where specially trained third-party negotiators engage with attackers on behalf of victim companies. They break down the real numbers from a 2025 ransomware case involving a midsize healthcare network that saved $4.2 million by negotiating down a $5.8 million demand to $1.6 million. Lucas explains how negotiators use psychological framing, proof-of-life verification, and leverage from threat intelligence to drive down ransoms. Luna pushes back on the ethical and regulatory risks, including OFAC sanctions exposure and the debate over whether paying funds future attacks. The episode also covers the rise of insurance-mandated negotiation clauses and the emergence of boutique firms specializing in this high-stakes craft. A focused, numbers-driven look at one of the most controversial corners of modern cybersecurity. #RansomwareNegotiation #CybersecurityBusiness #CrisisManagement #IncidentResponse #Ransomware #EnterpriseSecurity #CyberInsurance #ThreatIntelligence #SecurityOperations #BusinessContinuity #CyberRisk #NegotiationStrategy #HealthcareCybersecurity #OFAC #ThirdPartyRisk #BusinessAndTechnology #FexingoBusiness #BusinessPodcast Keep every episode free: buymeacoffee.com/fexingo
NOW PLAYING
How Security Teams Are Using Ransomware Negotiations to Save Millions
No transcript for this episode yet
Similar Episodes
Mar 26, 2026 ·1m
Mar 19, 2026 ·34m
Feb 18, 2026 ·11m
Feb 11, 2026 ·45m