In a situation where a threat actor is extorting an organization, what term best describes their motive?

The term that best describes the motive of a threat actor extorting an organization is financial gain. Extortion usually involves coercing an individual or organization to pay money in exchange for not executing a threat, such as releasing sensitive information, stopping a cyber attack, or other harmful actions. The primary goal for these actors during an extortion attempt is to profit financially, either by demanding a ransom or any form of payment that would benefit them economically.

While revenge, disruption, and information theft can be motives for other kinds of cyber attacks, they are not the primary drivers in extortion cases. Revenge might motivate some attackers who feel wronged, disruption might be an aim of those looking to cause chaos, and information theft is about acquiring data without necessarily seeking a monetary return. In contrast, financial gain remains the core goal in scenarios involving extortion, making it the correct term in this context.