These attacks are funded by ransom-payers
At the moment, businesses have an incentive to take a calculated risk by weighing the cost of the ransom against the financial loss expected if they don't pay it, factoring in the chance that the criminals may not hold up their end of the bargain. This financial calculation may be done by the board of the affected business or by their insurers.
If you have a financial incentive for legitimate businesses to pay large amounts of money to criminal organisations for this type of activity, you can expect the ransomware industry to flourish.
Paying these criminal organisations should be illegal and harshly punished, then it would cease to grow.
I also think the ransomware criminals should be harshly punished and that businesses should be encouraged to improve their security (including disaster recovery), but these things won't dismantle an illegal industry that's worth approximately one billion USD per year. The best way to do that is to make it unprofitable.