The Cost of Paying Ransoms: Why Silence Isn’t a Safe Option

Recent cyberattacks on major Australian institutions — from Optus to Medibank — have shown how quickly a breach can spiral out of control. In one case, hackers threatened to leak over a million customer records. Others, like the “BlogXX” group targeting Medibank, didn’t just threaten data release — they made it clear they’d go through with it. Even when attackers like those behind the Optus breach agree to limit disclosures, the pressure on businesses remains heavy. Paying a ransom doesn’t guarantee data will be returned, and it can actually encourage more attacks. The reality is, these groups treat cyberattacks like a business. They find weak spots, steal data, and then demand money — and they’re not backing down.

Governments are now pushing for a national ban on ransom payments, but that’s not the full story. Identifying who’s behind these attacks is tough. Groups linked to Russian ties, for example, often operate in shadows, making it hard to pin blame or respond quickly. Even if we knew who was responsible, banning payments doesn’t stop the attacks — it just changes how they happen. Criminals will find new targets or new ways to extort money. The Nigerian example offers a warning

What Really Matters in Fighting Cybercrime

• Attackers aren’t just after money — they’re building businesses with global reach and long-term strategies. They exploit systems, steal data, and demand payments, often with no intention of helping victims recover.
• Attribution is slow and unreliable — especially when groups operate across borders or use shell companies. Without clear evidence, law enforcement can’t act fast or hold anyone accountable.
• Banning ransom payments is a flawed fix — it shifts the problem, doesn’t stop attacks, and may even push criminals into more dangerous or unregulated operations.
• Real progress comes from stronger defences inside organisations, better detection tools, and international coordination to track and shut down these groups.

We can’t just say “don’t pay” and expect things to get better. The threat of ransomware will keep growing unless we invest in real, working security — and work together across borders to stop it.