Ransomware attack
A ransomware attack is a type of malicious cyberattack in which cybercriminals encrypt a victim’s data or computer systems and then demand a ransom (usually in cryptocurrency) in exchange for providing the decryption key or restoring access to the compromised systems. Ransomware attacks are financially motivated and can have severe consequences for individuals, businesses, and organizations. The following picture illustrates ransomware attack activities:
Figure 4.2 – Ransomware attacks (source: Freepik.com)
Here’s how a typical ransomware attack unfolds.
Infection
Ransomware is typically spread through malicious email attachments, through malicious links in emails or websites, or by exploiting software vulnerabilities. For example, when a user opens an infected file or clicks on a malicious link, the ransomware payload is executed on the victim’s computer.
Encryption
Once the ransomware is executed...