The U.K. Information Commissioner's Office and the National Cyber Security Centre asked the Law Society to advise against members paying ransomware demands. U.K. Information Commissioner John Edwards said ransomware payments "will not guarantee that compromised files are released" and "does not reduce the scale or type of enforcement action from the ICO or the risk to individuals affected by an attack." Edwards added that incident response should include "vigilance" and "good cyber hygiene." The ICO also recently updated its ransomware guidance.
11 July 2022
ICO, NCSC issue advisory against ransomware payments
Related stories
Notes from the IAPP Canada: CPS25 highlights privacy, AI, cybersecurity evolution
A view from DC: The FTC's next priorities
Developers prepare for uncertainty, look to prior regulations with AI Act coming online
Notes from the Asia-Pacific region: China ramps up AI governance
Preparing your company for a financing round: A privacy action plan