Whether or not to pay a ransomware demand has long been an ongoing conundrum for organizations worldwide, and the UK government has decisively told solicitors to advise their clients not to pay up.
A joint letter from the Information Commissioner Officer (ICO) and the National Cybersecurity Center (NCSC) to the Law Society said ransomware “payment incentivizes further harmful behavior by malicious actors and does not guarantee decryption of networks or return of stolen data”.
In addition, the ICO said it “does not consider the payment of monies to criminals who have attacked a system as mitigating the risk to individuals and this will not reduce any penalties incurred through ICO enforcement action”.
What should I do if I get compromised?
If a ransomware attack does manage to slip through your antivirus software, instead of immediately opening your coffers and acquiescing to cybercriminals’ demands, the ICO encourages you to check out its updated ransomware guidance (opens in new tab) or to head to the NCSC website’s ransomware hub (opens in new tab).
You can see why the UK government has decided to give business clarity regarding dealing with ransomware, the method of cyberattack is time and time again proving to be a dangerous threat globally; Costa Rican president Rodrigo Chaves has said his country is “at war” with the Russian-speaking Conti ransomware gang.
The cost of cybercrime is estimated to be in the billions in the UK alone.
The Economic and Social Costs of Crime report estimated an overall cost of £1.1bn from computer misuse incidents against individuals in England and Wales in the 2015/16 financial year.
However the government in its letter to the Law Society highlight this does not include the cost to businesses that are thought to bear the majority of the cybercrime costs, meaning the actual cost of cybercrime “will be much higher”.
ICO did lay not that though ransomware payments are not necessarily unlawful in the purely technical sense “payers should be mindful of how relevant sanctions regimes (particularly those related to Russia) – and their associated public guidance – may change that position”.
With cyberattacks continuing to be a key front in the ongoing Russia-Ukraine conflict perhaps investing in better ransomware protection can help businesses avoid any nasty legal ramifications.
- Don’t want to grapple with debating ransomware demands in the first place? Check out our guide to the best endpoint protection.
