Security News > 2023 > August > Ransomware: To pay or not to pay
Comprehensive security plans and programs must focus on defense, but also on answering these key question: "How will the organization respond to a ransomware attack?", and "At what point will the option of paying the ransom be on the table?".
The more ransoms organizations pay, the more profitable ransomware attacks are to cybercriminals.
If you pay once, you'll most likely get hit again.
If a business does decide to pay a ransom, it should be prepared for more attacks in the future.
The full impact of an attack must be considered before deciding not to pay.
The overall focus of security programs must be resilience and flexibility: make it harder for attackers to breach your systems and make it possible to respond to attacks faster, so you know exactly which action to take without wasting time mulling over the question "To pay or not to pay".