The Ransomeware Dilemma

  1. Sometimes you just don’t have another choice. Your Cybersecurity strategy has failed you, attackers have gotten in and ransomed your critical data. What do you do? If you haven’t prepared for this moment and have backups and strategy ready to go — you probably have a choice of paying or closing the doors. I know which option I’d choose if I had to.
  1. Most importantly, here, is that paying a ransom provides funding to attack the next victim and fuel the attacker(s). The surest way to end ransomware is to make sure nobody pays the ransom. Then the business model dies, and attackers move on to something else, presumably. Alright, easy to say but is that realistic? I dare say, no. There will always be cases — in the real world — where a company will have to pay. Whether through their own negligence, or sheer accidental oversight — they will be stuck with no other alternative than paying the ransom or facing some catastrophic end. When you pay a ransom you’re funding terrorism. While that may seem harsh — it’s fairly accurate.
  2. Equally obvious, but maybe not as prominent is that there’s no guarantee that you’ll get your data back or that the extortionists won’t publish your secrets anyway. Then you’re screwed, and out a lot of money. In recent times ransomware operators have become adept at providing customer service and making sure you get your data back. This may make you hopeful, but it’s not a guarantee and every group is completely different in their reputation and dealings. Some gangs are out for just the money, some are out for espionage, and some are out for something else. But there’s one sure thing, and that is that there is no guarantee.

--

--

--

I’m Rafal, and I’m a 20+ year veteran of the Cyber Security and technology space. I tend to think with a wide-angle lens, and am unapologetically no-bullsh*t.

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

RNG — The Secret of Cryptography

Different kinds of crypto scams running online

SSL Certificates 101

freepik.com

How to Establish Your Own VPN Server 🔑

Hot, warm or cold - Where do you store which event data?

Common InfoSec Vocabulary

{UPDATE} Skip school Hack Free Resources Generator

Dataverse Internet Memories

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Rafal Los

Rafal Los

I’m Rafal, and I’m a 20+ year veteran of the Cyber Security and technology space. I tend to think with a wide-angle lens, and am unapologetically no-bullsh*t.

More from Medium

5 Major Cybersecurity Measures in Healthcare to Prevent Cyberattacks

Getting into Cybersecurity the Cybergirl way.

Automation: The Future Of External Asset Inventory Management For Better Cyber Security

Complete guide to Perform External Penetration Testing Step by Step methods.