Eh, HDD failure and ransomware are not the same things. If you have two HDDs in a mirror configuration, and one of them dies, you lose nothing. If you get ransomware, both are encrypted.
If one machine suffers an SSD failure, you lose one machine and inconvenience one user. If your network is hit with ransomware, potentially it spreads to every machine and through file servers, affects all users.
Obviously you should have a 321 backup system, but management tends to resist anything too robust. And even with that, there are the competing needs of getting machines back up and running, forensics to figure out what happened and stop the same thing happening again, and the insurance company audit to see if they feel like paying out or not.