Double extortion is a cyberattack method commonly used in ransomware incidents. In this tactic, attackers not only encrypt a victim’s files, making them inaccessible, but also steal sensitive data. They then threaten to publicly release or sell the stolen information if the victim refuses to pay the ransom. This dual threat increases the pressure on victims to comply, as they risk both data loss and reputational or legal damage from a data breach. Double extortion has become a prevalent and dangerous evolution in ransomware strategies.