Absent government help to investigate or the guts to track down and kill the perps, hot backup is the way to go.
#BlueScreenBill is swearing up a storm right now... “How did they keep the backups from becoming infected!!! I had it all planned!!”
The problem is that APTs can very easily salt the ransomware into backed up data if undetected for a period of time. If it’s date/time triggered, recovering from a backup can mean an endless loop of infection.