What is Ransomware?
Posted by Damien Biddulph on Wed 28th Nov 2018
I was recently asked by a friend of mine “What is ransomware?”
I told him - Ransomware is a type of malicious software which encrypts your data or files, a user at your place has either run a file or clicked a dodgy link which has run a piece of code on your network.
Once it’s been run on a computer it'll connect to every other computer on the network and infect them.
Every PC it discovers it'll encrypt and make it completely useless unless you pay for the guy who wrote the software to unencrypt it - they will require payment via Bit Coin which is an anonymous currency, i.e. it cannot be tracked or traced. So you'll never find out or be able to prosecute the malicious coder.
The coder does not care about your data, and will not see your data, all they care about is making money by bribing people to give him/her the money to unencrypt it.
No hacking has taken place either. It’s not a hack, someone has run a file on your network – accidently, which is so easy to do. Whilst you can try to prevent it it’s very difficult, and basically you'll rely upon your backups to get your computers back up and running.
You will have to be sure the ransomware has been cleared before turning any PC on. In fact, all PCs will need to be cleaned and scanned.
You could be in for a long night... I’d be surprised if you’re back up before the weekend!
If you need assistance let me know.