You don’t have to be a victim of ransomware

With all of the scams running around the Internet today, it's easy to ask "what can we do?" Just last week I met with an employee of a company that had been completely shut down for a week due to ransomware (probably Locky, probably delivered by an email to an HR executive who had too much power over their IT systems). My client asked "what can be done" in a tone as if to imply that "these things just happen" and there's nothing to be done.