Definition

Ransomware

Ransomware is a type of malware that encrypts victim data and demands a ransom payment to restore access.

Ransomware encrypts files, databases or entire systems and demands payment (usually cryptocurrency) for the decryption key. Modern variants (double extortion) exfiltrate data and threaten publication. Prevention includes ISO 27001 controls, offline backups, network segmentation and ISO 22301 response plans.

Key aspects

Double and triple extortion

Besides encrypting data, attackers exfiltrate information and threaten publication. Triple extortion adds DDoS attacks or client contact.

Entry vectors

Most common vectors are phishing, compromised credentials, unpatched vulnerabilities and exposed remote access (RDP).

Preventive controls

Tested offline backups, network segmentation, MFA, patch management and incident response plan are essential controls.

Frequently asked questions

Authorities advise against payment. It does not guarantee recovery, funds organized crime and may create legal liabilities. Prevention and backups are the best defense.

ISO 27001 (Annex A controls), ISO 22301 (response and recovery plans), ISO 27035 (security incident management).

Comparison

Ready to act on these findings?

Need an assessment in this area?

Request diagnosis→View research→

Loading content…

Ransomware

Key aspects

Double and triple extortion

Entry vectors

Preventive controls

Frequently asked questions

ISO 27001 vs ISO 42001: key differences between information security and AI management

ISO 9001 vs ISO 27001: quality management vs information security

How to implement ISO 27001 in your organization

How to prepare for an ISO audit

Shadow AI: artificial intelligence use without formal governance

Personal data breach: exposure assessment and privacy controls

Ready to act on these findings?

Ransomware

Key aspects

Double and triple extortion

Entry vectors

Preventive controls

Frequently asked questions

ISO 27001 vs ISO 42001: key differences between information security and AI management

ISO 9001 vs ISO 27001: quality management vs information security

How to implement ISO 27001 in your organization

How to prepare for an ISO audit

Shadow AI: artificial intelligence use without formal governance

Personal data breach: exposure assessment and privacy controls

Ready to act on these findings?

Ransomware

Key aspects

Double and triple extortion

Entry vectors

Preventive controls

Frequently asked questions

Related content

ISO 27001 vs ISO 42001: key differences between information security and AI management

ISO 9001 vs ISO 27001: quality management vs information security

How to implement ISO 27001 in your organization

How to prepare for an ISO audit

Shadow AI: artificial intelligence use without formal governance

Personal data breach: exposure assessment and privacy controls

Ready to act on these findings?

Ransomware

Key aspects

Double and triple extortion

Entry vectors

Preventive controls

Frequently asked questions

Related content

ISO 27001 vs ISO 42001: key differences between information security and AI management

ISO 9001 vs ISO 27001: quality management vs information security

How to implement ISO 27001 in your organization

How to prepare for an ISO audit

Shadow AI: artificial intelligence use without formal governance

Personal data breach: exposure assessment and privacy controls

Ready to act on these findings?