Protecting UK Families & BusinessesKnowledge is power — we make sure you have it
Menu ☰
🛡 CyberAware UK
🔍𝕏🎧
Menu
Home🔍 Search
Live Threat Intel
DashboardHorizonReportsScams DatabaseThreat MapDark WatchData at a Glance
Been Scammed? Start Here
Help — I've Been ScammedRecovery GuideReport a CrimeVictim SupportEmotional SupportSupport & FAQ
Lock It Down
HackingSecurity EducationSocial EngineeringEthical HackersDigital FootprintInsurance FraudFighting Back
Scams & Money
London ScamsGov FraudIdentity FraudRomance ScamsCyber StalkingLawNew Legislation
Reviews & Tests
Product Reviews
Know Your Stuff
PodcastQuizFree GuideLearning HubTeensBullySilver SurfersManga HeroCulture
Go Deeper
InvestigationsNew TechAI FutureDigital DetoxAsk UsTech News
Careers
Cyber Careers
About Us
AboutForensic ToolsShopAdvertiseBusiness
© 2026 CyberAware UK
🔒
🔒

Ransomware & Malware

One click on the wrong attachment and every file on your computer is encrypted. Photos, documents, family videos — all locked. A screen demands Bitcoin to unlock them. Ransomware is not just a business problem. It targets individuals, families, and small businesses who cannot afford to lose their memories or their livelihoods.

📊 The Scale

1,200+
UK SME ransomware attacks in 2024
£8,200
Average ransom demand
19,000
Appointments cancelled (NHS WannaCry, 2017)

Sources: NCSC Annual Review 2025, NHS Digital, ransomware.live.

🎭 How Ransomware Gets In

📎
Fake Invoice

The most common method. An email with an "invoice" attachment. You open it. Your files are encrypted.

📦
Delivery Notification

Fake DPD, Royal Mail, or Amazon tracking link. Tells you to download a PDF to track your parcel.

💼
Fake Job Offer

"Job application" with a ZIP attachment. The file is ransomware disguised as a CV.

🔓
Pirated Software

Cracked games or software from torrent sites. They install ransomware alongside the file you wanted.

🛡 Protection 3-2-1 Rule

The only sure defence against ransomware is backups. Follow the 3-2-1 rule:

  • 3 Three copies of your data (1 original + 2 backups)
  • 2 Two different media types (e.g. external hard drive + cloud storage)
  • 1 One copy kept offline (disconnected from your computer)

⚡ If You Are Infected

  • 1. Disconnect from the internet immediately. Pull the cable or turn off Wi-Fi.
  • 2. Do NOT pay the ransom. Paying funds criminal networks and does not guarantee your files back. Only 65% of victims who pay ever get their data restored.
  • 3. Report to the NCSC — ncsc.gov.uk/report. They can sometimes help with decryption.
  • 4. Report to Action Fraud on 0300 123 2040.
  • 5. Restore from your offline backup. This is why you have one.

📖 Real example — WannaCry (2017): A ransomware attack spread through the NHS. It locked 70,000 devices across 40+ hospital trusts. 19,000 appointments were cancelled. The attack exploited unpatched Windows software. The ransom was £230 per device — but the damage was millions. This happened because one organisation did not install a security update. Keep your software updated.

🐾 BULLY SAYS

"I bit a ransomware file in half once. Not my proudest moment — it tasted terrible. But I saved the user's files. Back up your data. I cannot be everywhere at once."