The Cyber Source blog

Cyber Security, in plain English

Explainer: How does Ransomware work? The 5 phases of an attack

In PART 1 of our 3-part series on Ransomware, we look at the 5 distinct phases of a ransomware attack.

Protection from attack starts with recognising the compromise indicators

Your organisation’s success in defending against a ransomware attack is largely dependent on your level of preparation and the tools you deploy to monitor your systems to detect, respond to and neutralise suspicious activity.

The 5 Phases of a Ransomware Attack

There are 5 distinct phases of a ransomware attack. Understanding and recognising the indicators of compromises can increase your likelihood of successfully defending against an attack. The timeline of an attack is very compressed - often as little as 15 minutes - from exploitation and infection to receiving the ransom note.

View the 'How does ransomware work' infographic

Explore our 24/7 NOC/SOC


Sign-up for weekly updates

Recent Posts

Recent Posts