Be Secure Online Blog

Ransomware Demands. Do You Pay or not!

ramsomware, pay or not to pay
Protection & ransoms have moved on from Don Vito's day. He'd love Ransomware.

The Don is dead, Long live the Ransom.

Don Corleone may not have approved of drugs. Ransomware would be more his style, neat, quick and easy. Nearly victimless, no violence needed, causing no great stir with law enforcement. Insurance will pay in the end. The perfect crime and the proceeds paid into his overseas accounts. 

  • Pay or Not pay.
  • To Not Pay the ransomware demand
  • Ignore and rebuild from scratch

Treachery, lying and deceit are central to ransomware attacks and the core theme of 'The Godfather' movie trilogy. 

Treachery is a big part of ransomware attacks. Disgruntled business partners intentionally attempt to scuttle their ship rather than see others thrive. Hate and revenge are powerful stimulants. Finally, everyone agrees on this last point. Do everything you can to avoid being hit by a ransomware attack. Prevention is better than the cure.

If you pay, will it work?

Paying the ransom may be the fastest way to regain access to your data and systems. Alternatively, paying the ransom may encourage cybercriminals to carry on. After all, the victims will pay. 

There is no guarantee paying the ransom will resolve anything. It could lead to further demands for payment. Consider the nature and value of the data that has been encrypted, as well as the potential impact on your business operations if you can't retrieve it.

Want to get started with a KnowBe4 trial?

Let's organise that for you now!

Legal or regulatory obligations

  • Informing your directors and staff properly
  • Police
  • Business Partners
  • Insurance Provider

If you pay the ransom, you need to follow best practices to minimise the risk of further attacks. For example; 

  • A secure payment method 
  • Negotiating the ransom amount 
  • Make sure you are ready and able to reactivate your system.

Whether you pay the ransomware demand is a matter of choice. There is no one-size-fits-all answer. Remember that paying a ransom demand does not guarantee the return of your data, and may even encourage cybercriminals to target you again in the future. Weigh your options carefully and get expert advice before deciding.


ramsomware, pay or not to pay
Staff need cyber awareness training. Employees cause or facilitate 90% of all major cyber hits.

Do a cyber assessment and take steps immediately. 

  1. Introduce cyber awareness training immediately
  2. Update cyber safety procedures
  3. Upgrade cyber protection.

Introduce cyber awareness training immediately.

Cyber awareness training teaches individuals and businesses about the risks and threats related to cybersecurity. The training educates employees and staff on how to spot and respond to cyber threats, such as;

Phishing scams 
Ransomware attacks
Data breaches 

Awareness training covers password management, email security, safe web browsing, and social engineering. It includes up-to-date information on the latest cyber threats and prevention.

Cyber awareness training is a key component of your cybersecurity strategy. The training will reduce the risk of cyber-attacks and ensure employees have the knowledge and skills to protect themselves and your business from cyber threats.

Update cyber safety procedures.

Updating your cyber safety procedures is an essential step. Here are some tips to help you get started.

Identify the weaknesses: Conduct a thorough assessment of your current procedures. This can include outdated software, missing security patches, weak passwords, and poor access control. Develop new policies: Based on the identified weaknesses, develop new policies that address each issue. These policies should be clear and easy to understand.

Communicate the new policies: Ensure that all employees are aware of the new policies and understand their role in implementing them. This can be done through training sessions, workshops, or regular communication. Enforce the policies: Make sure that the policies are consistent across the organisation.

Monitor and update: Cyber threats change, so it's important to monitor your procedures and update them regularly.

Upgrade cyber protection.

Upgrade your cyber protection by implementing a multi-layered security approach. Educate yourself and your employees on identifying and avoiding phishing basic everyday cyber skills. Check out our email Traffic Lights

Use strong and unique passwords for all accounts, and enable two-factor authentication. Regularly update your software and systems to patch vulnerabilities and keep them secure. Trial Keeper Password Security

Invest in reputable antivirus and anti-malware software to detect and remove threats. Make sure you have at least two backups running 24/7. 

Remember, taking proactive steps to upgrade your cyber protection can prevent potential cyber-attacks and help keep your sensitive information secure.

Articles of interest

Articles, links and connections from the BeSecureOnline site you might find interesting

  1. It all starts with your staff. Turn your Staff into a human firewall! 
  2. Learn more here about Inbox guard - Data Sheet
  3. Employees don't really care! Staff! The Elephant in the room
  4. Phishing kills! How Phishing Works!
  5. German Insurer Allianz says  - Businesses fear a catastrophic IT failure the most
  6. Cybersecurity Essentials for Business
Comments are closed for this post, but if you have spotted an error or have additional info that you think should be in this post, feel free to contact us.


Get the latest updates in your email box automatically.