What does the ransomware incidents at GWK Travelex and Gedia Automotive tell us about the evolution of ransomware trends, and the players behind the attacks? Viewed from their individual incident cases it may appear that the only characteristics the businesses share was that they were both vulnerable and both hit by the same group. But what if we’re wrong about that? What if these two dissembler businesses share a third characteristic? What if both of these businesses were attacked because they are infringing on the black markets of organized crime barons, who like the Las Vegas Casino organized crime barons before them, are now using their “muscle” against legitimate business operations who compete against them? The lucrative black markets of money laundering and grey and black market automotive parts. What if the motivation for using ransomware attacks expanded beyond the return of a potential ransom paid? Has the use of ransomware evolved into an asymmetric threat? Is ransomware being used in a destructive capacity to disrupt the supply chain and business competitors of organized crime entities?