If the ransomware gangs keep making large sums of money – easily – from attacking businesses, then they will continue sending out those phishing emails to organisations all round the world. Statistics like these do not help any of us:
Most organizations hit by ransomware would pay if hit again • The Register
I can understand why businesses hit for the second time would just pay – but if you are prepared to pay, spend that money ahead of any encryption issues, for better mitigation and a set of back-ups that will save you. A simple spend is train your people better to recognise and respond to phishing and social media attacks. Find a cyber security partner that matches your vision, budget and will value you as a client, rather than just one of the 1000 clients they need to make their services profitable.
If hackers know organisation will pay, then they will continue being a threat and risk to all of us.
Clive Catton MSc (Cyber Security) – by-line and other articles