The document summarizes the findings of a survey of 200 IT executives in the US and UK about how their companies are responding to ransom-based cyber attacks. It reports that UK executives are less willing to pay ransoms than US executives, with only 9% of UK executives saying they would pay versus 23% in the US. Over half of UK businesses have invited or are open to inviting hackers to assess their cyber security. On average, ransoms demanded of UK companies are higher at £22,000 compared to $7,500 in the US. Executives who have not experienced an attack are less likely to say they would pay a ransom compared to those who have already been attacked.