Cyber criminals use ransomware to take control of your data or systems. They offer to release them if you pay them a ransom. The National Crime Agency (NCA) strongly advises you not to pay. Many victims never get their data back and known ‘payers’ are often targeted again. Read the National Crime Agency’s guidance. Tell us. Under our rules you need to tell the FCA as soon as you know of ‘material’ cyber incidents which affect your firm. This is covered under Principle 11 and relevant provisions in SUP 15.3 of the FCA Handbook.