Ransomware isn't your problem. It is the outcome of a real problem. Your real problem is how did the ransomware get in? Was the social engineering? Was it unpatched software? Is it password guessing? Was a misconfiguration? Was it overly permissive permissions? How did the ransomware get in? Because your problem isn't ransomware. It's how the ransomware got in. Focusing on ransomware is like focusing on your brakes after someone stolen your car. It's all right. You can focus on what the attackers are going to do to your brakes, but it doesn't change the fact that they stole your whole car.