What is ransomware?
6th February 2025
Every minute, four companies fall victim* to ransomware attacks.
When you think of the word ‘ransom,’ you might think of people being kidnapped or valuable art being stolen, only to be returned for a reward or retrieved when the criminals are apprehended.
Famously ‘The Scream’ by Edvard Munch was stolen and held to ransom for $1 million in 1994. Sadly, in the case of ransomware, you could be the one screaming.
What is ransomware? It blocks access to your computer system or to your data until a ransom is paid. Files are encrypted, with the decryption key being the only way to unlock them.
How does ransomware spread? Like other malware, is can spread through phishing emails, malicious attachments or vulnerabilities in software.
What is the cost? In 2024 an anonymous Fortune 50 company paid $75 million to the ransomware group Dark Angels*2 – the financial costs can be immense. In addition to this, the reputational damage can lead to loss of business.
How do you avoid ransomware? Create regular backups so you can always access important information, keep your antivirus software updated to keep ahead of emerging threats, and be cautious what you click, be it online or via email.
What should I do if I receive a ransomware demand? The National Cyber Security Centre (NCSC) strongly advises against paying ransomware demands*3. There is no guarantee that after the amount is paid you will receive the decryption key, and your system may still have malware on it. Additionally, paying the amount encourages the cyber criminals – they’ll keep doing it if it works. Furthermore, by paying you look like an attractive prospect for future attacks.
Hopefully ransomware can be avoided through the advice above. If you are unfortunate enough to be targeted, the best thing to do is to remain calm and report the incident on the UK government website.*4
*https://www.getastra.com/blog/security-audit/malware-statistics/