The majority of organisations which become infected by ransomware will give into the demands of cybercriminals for reasons ranging from the importance of the encrypted data to the perceived low costs of ransom payments.
However, some companies have discovered the hard way that cybercriminals are not to be trusted, with many only paying hackers to unencrypt their files only to find that they never get their data back.
While three quarters of organisations who haven't been the victim of a ransomware attack say they wouldn't give into the demands of hackers if infected, it seems that those do suffer a ransomware infection change their tune; two thirds of companies which have fallen victim to such an attack have paid up.
It's because companies fear the repercussions of losing the data that those infected have given into ransom demands, with 37 percent of organisations worried about being fined if data became lost - the fact that quietly paying a ransom could mean that the business doesn't need to go public about a breach could also be a factor in this.
Another reason given for doing business with cybercriminals is that the encrypted data is highly confidential, with a third of those who've paid hackers suggesting that this is the reason they gave into ransom demand, while almost as many view the cost of a ransom as low enough to justify paying as a means of avoiding any further issues.
For many companies, the figures simply represent a reasonable amount to pay in order to get potentially sensitive data back from hackers - however, this can backfire as if hackers know they can extort money from a particular company, they could repeatedly attack it and demand payments each time.
"When faced with a ransom situation, most organisations simply cannot afford to part with the encrypted data and are forced to fork out the requested amount, often more than once. Caving in to the demands of cyber-extortionists only reassure them of their strategy and perpetuates the threat cycle," says Bharat Mistry, cybersecurity consultant at Trend Micro.