Attackers are going after both companies and cities by exploiting vulnerabilities via malicious email attachments and demanding payments for decryption keys. In early June, Baltimore rejected a $76,000 ransom, and the damage will instead cost the city about $18 million in IT costs and lost revenue.
Source