As ransomware rages, debate heats up on response

To pay (with no guarantee that you’ll get your data back) or not to pay. As always, the answer is “It depends”. Here’s one side of the argument, assuming you have recent backups…:

[…] But Randy Marchany, chief information security officer for Virginia Tech University, said the best answer is to take a hardline “don’t pay” attitude.

“I don’t agree with any organization or city paying the ransom,” Marchany said.

“The victims will have to rebuild their infrastructure from scratch anyway. If you pay the ransom, the hackers give you the decryption key but you have no assurance the ransomware has been removed from all of your systems. So, you have to rebuild them anyway.”


Original article here