Ransomware is an increasingly common cybercrime in Victoria. Anyone can be targeted, so it’s critical to arm yourself with up-to-date information.
Keep reading to learn what ransomware is, how to avoid it and what to do if you’re targeted.
What is ransomware?
Ransomware is a type of malicious software (malware) that’s used by cybercriminals to extort money from people (get money through force).
After ransomware infects your device, you’ll no longer be able to access your device or files. A cybercriminal will then demand you pay a ransom to regain your access. They may even threaten to leak your private data if you don’t pay the ransom.
Paying the ransom doesn’t guarantee that you’ll regain access or prevent your information from being sold or leaked by cybercriminals. Doing so could also make you a bigger target for another attack. The Australian Cyber Security Centre recommends that you never pay a ransom to cybercriminals.
How does it work?
Ransomware gets into your devices like other types of malware and viruses. For example, it can enter via:
- spam email or messages (when you open a link or an attachment)
- malicious websites you visit that try to install ransomware
- weaknesses in your devices’ software
- applications you downloaded and installed that you thought were trustworthy.
Who does ransomware target?
Many people believe that they don’t need to think about ransomware because it only affects big companies.
Unfortunately, anyone can be targeted – including people like you.
That’s why it’s essential to know how to prevent a ransomware attack from happening in the first place.
How do I prevent ransomware attacks?
Follow these simple steps to protect yourself from ransomware attacks:
Top tip
Regularly backing up your files is one of the few ways you can access your files again after a ransomware attack. Our easy-to-read guide to backups will help you get started.
Warning signs of ransomware
There are some key signs that you may be a victim of ransomware. For example:
- you get pop up messages demanding you pay to get your files back
- you can’t access or log into your devices anymore
- your files now need a password or code to open or access them
- your files have been moved, your file names have been changed or now have odd file extensions. For example, .ecc, . exx, .xyz, .abc, .micro, .encrypted, .locked, .crypt, .LOL!, .RDM, .0x0, .bleep, .toxcrypt or another unknown extension consisting of random characters.
How do I get rid of ransomware?
It is recommended that you never pay a ransom. Instead:
Follow ACSC advice
Read the Australian Cyber Security Centre (ACSC)’s detailed guidance on how to respond if you are a victim of ransomware.
Seek professional help
It may be worth finding an IT professional to help you recover from a ransomware attack.
Make sure to do your research and contact a reputable company. Cybercriminals may pretend to be IT support and gain remote access to your computer. This would cause even more damage to your device and files.
Tips to protect your accounts
Ransomware can cause your most important information to become compromised. Remember these tips for protecting your accounts after a ransomware infection:
- use a different (non-infected) device to change passwords for your most important accounts
- be alert to potential scams
- if you suspect the ransomware infection has compromised your identity documents or financial information, learn what to do after an information leak.
How do I report ransomware?
You can securely report ransomware (as well as other cybercrimes) to ReportCyber(opens in a new window).
Your report will be referred directly to the relevant law enforcement agency.
By making a report, you will provide vital information to help target cybercriminals. You will also help to make going online more secure for all Australians.
Updated