Ransomware
Ransomware is a type of malicious software designed to block access to a computer system or data until a sum of money is paid. It is digital kidnapping.
1 The Digital Kidnapping
Imagine someone sneaking into your office, putting unbreakable locks on all your filing cabinets, and swallowing the key. They then leave a note: "Pay me $10,000 for the key."
This is exactly how ransomware works. It uses strong encryption to lock your files. Without the unique decryption key held by the attacker, your data is mathematically impossible to retrieve.
2 How It Happens
1. Infection
Often starts with a phishing email containing a malicious attachment or link. Once clicked, the malware installs itself.
2. Encryption
The malware silently scans for valuable files (documents, images, databases) and encrypts them in the background.
3. Extortion
A ransom note appears on the screen, demanding payment (usually in Bitcoin) within a time limit to get the files back.
3 Defense Strategies
The Golden Rule: Backups
The only 100% effective defense against ransomware is having offline backups. If your files are locked, you simply wipe the system and restore from your backup. You don't pay the ransom.