Don't pay ransom, Kaspersky Lab warns

Report being attacked by ransomware to the authorities, instead.

If your organisation ever gets infected by ransomware (and there are good chances it will), it is better not to pay up, because you probably won’t get your data back, even if you do pay the ransom. This is according to a new report by security firm Kaspersky Lab, which urges organisations to instead report the incident to the authorities. It bases its conclusions on a couple of research results – more than a third (36 per cent) of organisations pay the ransom, but around 20 per cent still don’t get their files back. 

Approximately 17 per cent of organisations have been victims of ransomware before, and six per cent have had their data held hostage against them.  

“We urge all ransomware victims, whether they are large organisations or single individuals, not to pay the ransom demanded by criminals,” says Andrei Mochola, Head of Consumer Business at Kaspersky Lab.  

“If you do, you will be supporting the cybercriminals’ businesses. And, as our study shows, there is no guarantee that paying the ransom will actually give you access to your encrypted data. The best way to protect yourself and your files from ransomware is with an effective security solution. In addition, Kaspersky Lab, together with other security vendors and law enforcement agencies, is constantly working on detecting the criminal servers that store decryption keys and retrieving the keys from them. From a consumer perspective, what’s really important is that ransomware is reported to law enforcement agencies to help fight this threat.” 

Ransomware is one of the biggest malware threats organisations all over the world are facing. It usually spreads through fraudulent emails with malicious attachments, and encrypts all the data on a computer or a network.

Image source: Shutterstock/Nicescene