The Federal Bureau of Investigation (FBI) advises companies that fall victim to hacks involving Cryptolocker, Cryptowall or other forms of ransomware to pay the ransom, said Joseph Bonavolonta, an assistant special agent with FBI, speaking at the Cyber Security Summit 2015 in Boston
Noting that while the agency has their back, “the ransomware is that good,” the Security Ledger quoted Bonavolonta as saying. “To be honest, we often advise people just to pay the ransom" because efforts by the Bureau to defeat the encryption used have proved futile.
But he added that the success of the ransomware has benefited the victims in a twisted way because having so many people willing to pay has driven the price down since malware authors less likely to try to charge excessive ransom amounts.
Stu Sjouwerman, CEO at KnowBe4, told SCMagazine.com that he agrees in part with the Bonavolonta's advice because if a company stands to lose week's or month's worth of work while trying to decrypt its files, paying out $500 or so in ransom can be viewed as the equivalent of what he called a cheap “security audit.”
However, Sjouwerman said that the FBI should focus more on education and prevention rather than just giving in to the bad guys.
“I understand where they are coming from but rewarding the bad guys for bad behavior will only reinforce bad behavior,” Sjouwerman said.
He recommended that companies have backup files that are regularly tested, be religious about application and operating system updates, and ensure employees are trained in cybersecurity best practices.