The UK’s data and cybersecurity guidance agencies have told members of the legal profession to stop advising clients to pay ransomware criminals, adding that complying with these demands will not be considered a mitigating factor in ICO enforcement proceedings.