[et_pb_section fb_built=”1″ _builder_version=”4.9.4″ _module_preset=”default”][et_pb_row column_structure=”2_5,3_5″ _builder_version=”4.9.4″ _module_preset=”default” hover_enabled=”0″ sticky_enabled=”0″][et_pb_column type=”2_5″ _builder_version=”4.9.4″ _module_preset=”default”][et_pb_text _builder_version=”4.9.4″ _module_preset=”default” hover_enabled=”0″ sticky_enabled=”0″]<\/p>\n
Recently, we asked the question if organisations should pay ransomware demands.<\/a> There is a balance between desperation and the uneasy knowledge that you might be funding further criminal attacks on the community.<\/p>\n We\u2019ve just read a paper which tells us that it also makes you more likely to be subject to another attack.\u00a0<\/p>\n [\/et_pb_text][\/et_pb_column][et_pb_column type=”3_5″ _builder_version=”4.9.4″ _module_preset=”default”][et_pb_image src=”http:\/\/kinetics.co.nz\/wp-content\/uploads\/2021\/06\/RansomDemand.jpg” title_text=”RansomDemand” _builder_version=”4.9.4″ _module_preset=”default”][\/et_pb_image][\/et_pb_column][\/et_pb_row][et_pb_row _builder_version=”4.9.4″ _module_preset=”default” custom_margin=”-30px|auto||auto||”][et_pb_column type=”4_4″ _builder_version=”4.9.4″ _module_preset=”default”][et_pb_text _builder_version=”4.9.4″ _module_preset=”default” hover_enabled=”0″ sticky_enabled=”0″ min_height=”464px” custom_margin=”8px|||||”]<\/p>\n The authors of the paper, Cybereason, are trying to sell their service, so you might well think it is a little self-serving of them to come to this conclusion, but in this case, we think they are right. It makes sense and the data they present is compelling.<\/p>\n Their paper tells us that 80% of organisations that pay a ransom are attacked again, often by the same criminals. These ransoms are crippling once, let alone twice.<\/p>\n One statistic that jumped out at me was the comment that 50% of law firms that suffered ransomware had to lay off staff to survive.<\/strong><\/p>\n That is a little more than average which was 29% of organisations having to lay off staff after an attack, only slightly more than the number of organisations that had to shut down their operations entirely.<\/p>\n Another conclusion the report draws is that paying the ransom doesn\u2019t necessarily give you back your data. In almost half the ransoms paid, the data came back infected or damaged.<\/p>\n Chris Wray is the director of the FBI. <\/strong>\u00a0Here’s what he had to say:<\/a><\/p>\n “In general, we would discourage paying the ransom because it encourages more of these attacks, and frankly, there is no guarantee whatsoever that you are going to get your data back,” Wray testified before a U.S. Senate appropriations panel.”<\/em>\u00a0<\/span><\/p>\n <\/p>\n The obvious conclusion is to invest in your cyber-protection, rather than paying out ransoms.\u00a0 We’re committed to bringing forward pragmatic\u00a0cyber-security solutions<\/a> for our clients, and we will keep developing these with new services forward as the threats evolve.<\/p>\n