Overview
Ransomware is malicious software that encrypts your files and demands payment (usually in cryptocurrency) to restore access. Attacks target individuals, businesses, hospitals, schools, and government agencies. Modern ransomware operations have evolved into professional criminal enterprises, with some groups offering ransomware-as-a-service to other criminals. Prevention through backups, updates, and security awareness remains the best defense.
How This Scam Works
Ransomware typically enters systems through phishing emails with malicious attachments, compromised websites, or exploited software vulnerabilities.
Once activated, the malware encrypts files on the infected computer and any connected network drives, making them inaccessible.
A ransom note appears demanding payment in cryptocurrency within a deadline, after which the ransom increases or files are permanently destroyed.
Double extortion ransomware also steals data before encrypting it, threatening to publish sensitive information if the ransom is not paid.
Warning Signs
Real Scam Examples
These are examples of messages used in this type of scam.
ALL YOUR FILES HAVE BEEN ENCRYPTED! Your personal files, documents, photos, and databases are no longer accessible. The only way to recover them is to purchase our decryption tool. Send 0.5 Bitcoin to the following wallet address within 72 hours. After this time, your files will be permanently deleted.
Subject: Invoice #INV-2026-0847. Dear Customer, Please review the attached invoice for your recent order. Payment is due within 30 days. [Attachment: Invoice-0847.docm]
How to Protect Yourself
1Maintain offline backups
Regularly back up important files to an external drive that is disconnected from your computer when not in use. Cloud backups should use versioning so encrypted files do not overwrite clean copies.
2Keep all software updated
Install security updates promptly for your operating system, browsers, and all software. Ransomware often exploits known vulnerabilities in outdated software.
3Use reputable antivirus and anti-malware software
Keep security software active and updated. Enable real-time scanning and behavior-based detection that can identify ransomware activity.
4Do not open suspicious email attachments
Be extremely cautious with email attachments, especially from unknown senders. Disable macros in office documents unless specifically needed.
5Use network segmentation
For businesses, segment your network so that if one system is infected, the ransomware cannot easily spread to other systems and backup drives.
Frequently Asked Questions
Think you have received a scam like this?
Paste the suspicious message into our free AI-powered scam analyzer.
Related Resources
Phishing Attacks: The Complete Protection Guide
Phishing is the most common type of cyberattack, responsible for over 90% of data breaches. These attacks use deceptive ...
Business Email Compromise (BEC): Corporate Email Fraud
Business Email Compromise (BEC) is one of the costliest forms of cybercrime. According to Europol and the FBI, BEC cause...
Fake Antivirus Scams: Bogus Security Alert Pop-ups
Fake antivirus scams, also known as scareware, use alarming pop-ups and fake security alerts to trick you into believing...
Security Key Generator
Related Password Security resource
Cyber Hygiene Assessment
Related Password Security resource
Password Security Training
Related Password Security resource