1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Why you shouldn't pay the ransomware fee

Discussion in 'CSO' started by RSS, Jul 11, 2016.

  1. RSS

    RSS New Member Member

    While most of the decision makers would likely prefer to hear a simple yes or no when asking if they should pay, nothing in security is simple. By and large, the position of many leaders in the industry is that the ideal situation is not to pay.

    Security experts across the industry would like to see all enterprises, large and small, be prepared for a hit so that they can recover their data without paying a ransomware fee. The question of whether to pay the ransomware fee is tricky, though, as sometimes organizations are left with no other options.

    MORE: How to respond to ransomware threats

    When asked whether companies should ever pay a ransomware fee, Ryan Manship, security practice director at RedTeam Security said, “The first thing about ransomware is that it’s in many ways like terrorism. The US has a policy not to negotiate with terrorists. Where does that come from? Why does it exist? The reality is, you can’t trust the bad guys. You can’t trust them to do what they say they are going to do, which is to give back access to your data.”

    To read this article in full or to leave a comment, please click here

    Continue reading...

Share This Page