How does a user manage to get him or herself infected with r

How does a user manage to get him or herself infected with ransomware? What can the IT security team do to help mitigate the damage that it can do?

Solution

Ransomware attack is generally caused by trojans. This trojan disguises itself as a legitimate file and is downloaded or enters through a network vulnerability. The trojan then encrypts the user data and a message is displayed asking for rasom and steps to pay it.

The ransomware can be removed if detected in the early stages, where it still did not encrypt the data. Otherway to protect our data is to use deception and cover the actual user data with fake data, when the rasomware starts encrypts the fake data, the IT team can act swiftly to remove the ransomware before the user data is affected.