NCSC Guidance for Organisations Considering Payment in Ransomware Incidents

This guidance has been jointly developed by the insurance industry bodies ABI, BIBA, IUA and the NCSC. It is for organisations experiencing a ransomware attack and the partner organisations supporting them. It aims to minimise the overall impact of a ransomware incident on an organisation and help reduce:

• disruption and cost to businesses
• the number of ransoms paid by UK ransomware victims
• the size of ransoms where victims choose to pay