Ransomware for parents

What Is Ransomware?

Ransom ware is malicious software that encrypts your files or locks your device — then demands payment, often in cryptocurrency, to restore access. It's no longerjust a threat to large companies; individuals, charities, schools, and smallbusinesses are also targeted.

How Ransomware Spreads

• Delivered via phishing emails with malicious attachments or links
• Embedded in fake installers downloaded from sketchy site
• Hidden in pirated software or cracked games
• Exploits vulnerabilities in your operating system or apps

‍

What It Looks Like

• Encrypted file extensions: Your files may end in .locked, .encrypted, or random characters
• A fullscreen ransom note appears, often with a ticking countdown
• Threats escalate if you don’t pay in time
• Strange payment files outline instructions — often in cryptocurrency
• Total loss of access to your device or critical files

‍

How to Prevent Ransomware

• Back Up Regularly & Securely
  
  • Use cloud storage OR offline backups (like external drives)
  • Disconnect backups after saving to isolate them from attacks
• Keep Software Updated Automatically
  
  • Install updates for your operating system, apps, and browsers as soon as they’re available
• Be Careful with Links and Attachments
  
  • Only open attachments or links from trusted senders
  • Phishing remains the top method for ransomware delivery
• Use Antivirus & Ransomware Protection
  
  • Enable real-time scanning on all devices
  • Some tools have ransomware-specific defences that watch for suspicious behaviour
    
• Avoid Cracked Software and Pirated Content
  
  • These often come bundled with ransomware or backdoors

‍

What to Do If You Can't Access Your Files

• Do NOT pay the ransom.
  
  • There's no guarantee you’ll get your data, and it encourages criminal behaviour
• Act fast:
  
  • Disconnect your device from the internet immediately
  • Scan with trusted antivirus or anti-malware tools
  • If you have a clean backup, restore your files
• Seek help:
  
  • Try No More Ransom tools — they may offer free decryption
  • If needed, consult a reputable technician
• Report the incident
  
  • Individuals: Report via Action Fraud or call 0300 123 2040
  • Organisations, charities, schools: also report to NCSC via ncsc.gov.uk/report

‍

Ransomware attacks are increasing — but you don’t have to be a victim. With effective backups, limited software exposure, and informed habits, you can stay safe and resilient.