Who with enough access had the lack of forethought to actually fall for and/or trigger whatever ransomware vector was triggered? Shouldn't the sysadmins or those with that level of access be far more resistant to this sort of attack? Assuming it came through the normal vectors of email, etc., that seem to be in vogue nowadays. Users should only be able to fsck their own files, not traverse multiple databases with the ability to wipe this stuff out.