This browser is not actively supported anymore. For the best passle experience, we strongly recommend you upgrade your browser.

Your message has been sent

An advisor will contact you as soon as possible.

What is the subject of your request?

  • General questions
  • Jobs
  • Information for the press

Specify your request

Choose an office

  • Eight Advisory London

  • Eight Advisory Paris

  • Eight Advisory Rennes

  • Eight Advisory Nantes

  • Eight Advisory Lyon

  • Eight Advisory Marseille

  • Eight Advisory Brussels

  • Eight Advisory Frankfurt

  • Eight Advisory Munich

  • Eight Advisory Hamburg

  • Eight Advisory Zürich

  • Eight Advisory Amsterdam

  • Eight Advisory Köln

Unsolicited application

Specify your request

| less than a minute read

Navigating ransomware during M&A

Any cyber-attack can do significant operational, financial and reputational damage to an organisation. Of the various types of cyber-attacks, ransomware is increasingly favoured by cyber criminals who seek financial gain through digital extortion. The annual number of ransomware attacks worldwide increased nearly twofold from c.300 million attacks in 2020 to c.600 million attacks in 2021. 

In this article we examine what investment teams, operating partners and corporate M&A teams need know concerning ransomware on both buy and sell sides of a transaction. We cover some essentials regarding cyber incident reporting requirements in the UK and Europe and we offer recommendations on how to navigate ransomware related risk that will invariably be encountered during the M&A process.

We hope you enjoy the read, and would welcome the opportunity to discuss how we may help you and your teams navigate ransomware in your transactions.

In 2022, 71% of businesses worldwide have been affected by a ransomware attack. Ransomware is increasingly being encountered during the M&A process where risk and value implications must be considered.


ransomware, cyber security, mergers and acquisitions, strategy and operations