What Is Ransomware?

Published On: August 1st, 2022Categories: Business Software, Business Technology, Cyber Security, Tech Tips, Tech Trends

What is ransomware?
We have all heard about ransomware in the news. But do you know what ransomware really is? Ransomware is a form of malware that encrypts data or locks up systems until the victim pays a ransom.

How does it work?
It should come as no surprise that most ransomware attacks begin with a phishing email when someone clicks on a link or downloads an attachment. That simple action launches the malware, which immediately seeks out specific files and encrypts them without making its presence known. Then a ransom note is displayed on the victim’s computer explaining what happened, how much the victim must pay to receive the decryption keys to unlock their data, and may offer to decrypt a few files for free to prove that the keys work.

Attackers give the victims a short timeframe in which they must pay. Failure to meet it will either result in the ransom demands increasing in price, or the decryption keys being destroyed forever. All of this adds up to a difficult choice for the victim:

Pay the ransom, which is often extremely expensive, or
Attempt to recover without paying the ransom, which is extremely time-consuming and often futile.

How to beat ransomware?

Identify Phishing Attacks
Avoid Removable Media
Use Antivirus Software
Mind Your Mobile Devices
Always Follow Policy
Stay Alert

About the Author: Eric Vicencio

Eric began his career in healthcare, and he has been working in the IT field since 2006 when he graduated from Northern Illinois University. Eric specializes in Infrastructure, SQL and compliance: Licensing, HIPAA, GLBA and PCI.