The £1,000,000 ransomware demand that wasn’t

Graham Cluley
Graham Cluley
@
@[email protected]
@gcluley

Several folks in the computer security industry raised their eyebrows when reading recent reports that a UK council had been hit hard by ransomware, taking regular services offline.

Staff were forced to resort to pen and paper, make lots of phone calls, and even the local libraries were disrupted.

Lincolnshire library notice

The news that an organisation had been hit by malware that encrypted data files, and demands that payment be made for their recovery isn’t unusual of course. But the surprising headline that started to spread across the internet was that the malicious hackers were attempting to extort a million quid from Lincolnshire County Council.

Sign up to our free newsletter.
Security news, advice, and tips.

For instance, both an online news story and video report from the BBC asserted that the attackers had demanded a £1 million ransom be paid for the safe restoration of the council’s files.

Bbc news report

Frankly, that figure always sounded highly unlikely.

Think about it. The reason hackers hit computers with ransomware is to make money. As Bob Covello recently pointed out, if hackers ask for too much money no-one is likely to pay – and hopefully more and more people and organisations will recognise the value in investing in layered security and backups of their essential data.

£1 million? Few organisations have that kind of money kicking around to give to a bunch of hackers. The hackers know this, and that’s why they’re much more likely to ask for a few hundred pounds worth of Bitcoin.

Sure enough, an update from BBC News reports that the earlier claim of a £1 million ransom demand has now been revised to… umm… a mere £350.

To their credit, Lincolnshire County Council says it will not be paying their attackers anything, even at that less eye-watering price.

Which is a good thing. As past victims of online extortion have discovered, paying the bad guys is not worth it.


Graham Cluley is an award-winning keynote speaker who has given presentations around the world about cybersecurity, hackers, and online privacy. A veteran of the computer security industry since the early 1990s, he wrote the first ever version of Dr Solomon's Anti-Virus Toolkit for Windows, makes regular media appearances, and is the co-host of the popular "Smashing Security" podcast. Follow him on Twitter, Mastodon, Threads, Bluesky, or drop him an email.

What do you think? Leave a comment

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.