‘Human-operated’ ransomware are sophisticated malware that execute multi-level attacks against corporate networks.

Infographic - Human Operated Ransomware
Download Infographic

Download and share the infographic for free with employees

How is it different from a generic ransomware?

  • Targets an organization rather than a single device
  • Difficult to clean up and requires complete adversary eviction to prevent future attacks.
  • Leverage human attackers’ knowledge of common system and security misconfigurations to infiltrate the organization.

How does it work?

  • Cybercriminals gain access to an organisation’s network via a phishing attack or exploiting vulnerabilities in the network, and distribute malware.
  • The ransomware steals credentials and compromises privileged accounts. They move laterally across the environment to establish footholds.
  • Cybercriminals exfiltrate sensitive data and deploy ransomware as widely as possible for maximum impact.

We recommend the following:

  1. Limit the scope of damage of an attack by protecting privileged roles.
  2. Prepare your employees so you can recover from an attack without having to pay the ransom.