A massive malware strike affecting three Indian banks and a pharmaceutical company has at a ransom of 1 Bitcoin per machine incurred a total ransom equivalent to multiple millions of United States dollars at fiat/Bitcoin interface reported exchange rates (archived). Apparently only select machines operated by executives had their ransoms paid, but as the source article notes even with the files decrypted malware may remain allowing for easier insertion for future penetrators. Paying ransomware demands is the recovery method officially endorsed by the United States Federal Bureau of Investigation.
The particular piece of ransomware used in this strike goes by the name LeChiffre (archived). It does not propagate automatically and its windows executable needs to be initiated manually. These means that to be deployed on this scale the entire network infrastructure of these enterprises was thoroughly penetrated and brought to submit to the ransomers.