This is an example of current best practices not being forward thinking enough.  I was recommending my basics of not getting infected way back in 2008.  Time’s article lists the standard advice:

The only way to protect against a ransomware attack is rote: keep your operating system up to date, renew your anti-virus software regularly, back up your files on a daily or weekly basis, and never download anything from an email address you don’t recognize. Many cybersecurity experts warn that people should be particularly skeptical of emails with attachments that appear to be from trusted brands, like FedEx or Amtrak, when they arrive unexpectedly.

Just follow the link to my basics of not getting infected.  The client who got infected with ransomware violated rule #6 on my basics.  Mind you the client WAS running updated a/v and had all software patches up to date.  The folks are good in terms of using e-mail to try to trick you into clicking on something you shouldn’t though.  My e-mail back end(powered by Google Apps) automatically blocks all executable content in attachments(including anything hidden in .zip files) by default.  Contact ETC Maryland for details on how to keep your data protected against ransomware or any other threat.