Will ransomware victims get a double whammy?