Paying Ransomware – Should you or shouldn’t you?

You’re hit with ransomware – do you pay the ransom or not?

In the past, the FBI’s opinion on ransomware has been to pay it.  This has resulted in millions of dollars being sent to the hackers, in an attempt to obtain the encryption key so the victim’s files could be accessible.  Now, with ransomware becoming more and more prevalent, we ask, do you pay?

I firmly believe that paying the hackers is positive reinforcement to a negative behavior.  A simple psychology course will teach you that if you reward negative behavior, said negative behavior is bound to continue with the expectation of continued rewards.  This is what is occurring with ransomware.  In 2015, over $24 million was paid to ransomware hackers.  What message does that send?  Keep doing it!  Which is exactly what the hackers are doing.  In 2016, the reported ransomware amounts exceed $200 million.

Now, Homeland Security has discouraged victims from paying the ransom, as it does not promise that your files will be decrypted.  The United States Computer Emergency Readiness Team (US-CERT) has issues a formal alert regarding ransomware.  They have seven solution steps to help defend against ransomware which can be found here.

It is worth noting, the second solution US-CERT encourages, is the use application whitelisting technology.

Use application whitelisting to help prevent malicious software and unapproved programs from running. Application whitelisting is one of the best security strategies as it allows only specified programs to run, while blocking all others, including malicious software.

(Visited 12 times, 1 visits today)

2 thoughts on “Paying Ransomware – Should you or shouldn’t you?

  1. The ISP’s who host them are known, as is the IP they come from !!!

    Bar both from the internet !!!

    The Regional Internet Registries Authorities are able to do this, yet they allow this for profit !!!

  2. My name I Wes,
    I have been using PC Matic for almost one year. I have used four other well known anti virus programs and it seemed that they would bring more trouble into my system. You know those alerts that I had to call a certain number to get my control of my computer again.
    With PC Matic, all I do is “shout down ” my computer and run the PC Magnum and run the PC Matic Super Shield and ” I DO NOT PAY ANYTHING…BABY!!!!!
    A these companies should get on the ball and get PC Matic and not fall for these SHIT HEAD HACKERS !!!!!
    You can post this true testimony if you want.

Leave a Reply

Your email address will not be published. Required fields are marked *