In today's digital landscape, every connected system your organisation depends on is a potential vulnerability. From the CEO to the part-time contractor, every team member plays a crucial role in safeguarding...
On March 31st, the Conduct of Financial Institutions (CoFI) regime takes effect, enhancing conduct and culture in financial institutions, including life insurance. It mandates prioritizing customer interests...
In today's unpredictable world, events like global financial crises, natural disasters, and workplace tragedies have led to significant legislative changes affecting general insurance businesses in...
In January 2025, we launched a comprehensive report in collaboration with our technology partner, ReadiNow , which sheds light on the challenges organisations face in digitising their operations more efficiently...
As businesses navigate a rapidly changing risk landscape, the importance of digital transformation has never been greater. We’ve collaborated with our technology partner ReadiNow, who conducted a...
A recent spate of ransomware attacks has brought into sharp relief the critical question – to pay or not to pay. With some notable but limited exceptions, traditional advice from law enforcement and cyber experts has always largely been don't pay the ransom, get your IT forensics people involved as quickly as possible and see what they can do to recover your data. Better still, ensure you have appropriate data backup services in place to begin with to mitigate and reduce the risk of any data loss occurring.
This is good advice and has been broadly adopted by a majority of organisations affected by ransomware attacks…. that is until now. 2020 and the early part of 2021 has seen an increasing number of ransomware attacks where the victim chooses to pay the ransom. It is not always clear whether the victim successfully recovers its data in these cases or not following the payment. Many of our clients affected by breach events are now asking the question also. Is this something we should be doing? Should we be dealing directly with the threat actor? Will we be able to get our data back more quickly if we pay?
With this trend increasing we thought it would be helpful to consider the options, the pros, the cons and whether we should be adopting a new approach to dealing with ransomware requests.
Fill out the form to download the full copy of the whitepaper.