Deciding whether to pay the ransom after you've been hit by a ransomware attack is a tricky balancing act.

On the one hand you've got the theory - much like the government's approach to terrorism - that you should never negotiate. All doing so does is confirm you as reliable payer of ransom, potentially making yourself an even larger target for future attacks.

On the other hand, simply handing over a few thousand pounds to simply remove the headache is very tempting.

Best practice is to simply not pay. As Kansas Heart Hospital confirmed last week, despite paying the ransom their files were not unlocked and returned to them.

Having a proper process in place ahead of time is the real key. You may find our ransomware prevention checklist helpful in developing your own.