Lakeside House, Quarry Lane, Chichester PO19 8NY

hello@lms.group

Why paying a ransomware demand doesn't mean your data is safe?

The National Cyber Security Centre and the Information Commissioners Office have reminded solicitors and law firms that paying a ransom demand is never encouraged. Did you know it could actually lead to more ransomware attacks?

The joint letter, sent to The Law Society, warns solicitors about the rise in ransomware infections and payments. In many cases, the law firm may have advised their clients to pay the ransom, in the belief they will keep and retain their data.

The letter from the NCSC and the ICO said: "In recent months, we have seen an increase in the number of ransomware attacks and ransom amounts being paid and we are aware that legal advisers are often retained to advise clients who have fallen victim to ransomware on how to respond and whether to pay. It has been suggested to us that a belief persists that payment of a ransom may protect the sensitive data and/or result in a lower penalty by the ICO should it undertake an investigation. We would like to be clear that this is not the case." 

The two institutes also reminded solicitors that paying the ransom isn't any guarantee that any data will be returned. Why is that? It's because even if an encryption key is provided, it may not work properly. Although cyber criminals may give you a guarantee, they may not keep their word and will delete the sensitive data.

"Ransomware remain the biggest online threat to the UK and we do not encourage or condone paying ransom demands to criminal organisations. Unfortunately we have seen a recent rise in payments to ransomware criminals and the legal sector has a vital role to play in helping reverse that trend" said Lindy Cameron, CEO of the NCSC.

The ICO also confirmed that paying a ransom to obtain the data isn't something that will reduce potential financial penalties (in accordance with GDPR) for businesses that suffer a data breach due to a ransomware infection.

The letter also included a reminder that the NCSC "provides support and incident response to mitigate harm and learn broader cyber security lessons." 

"We do not advise members to pay ransoms, nor suggest that is what they should advise their clients."

If you need help securing your business to prevent ransomware and malware attacks, please get in touch. The aftermath of a ransomware attack can mean your business is down for hours, if not days, so it's important you secure your business now. Simply call 0330 088 2565 or visit our contact us page.

Visit LMS Group HQ