Ransomware

Ransomware is malware that encrypts an organisation's files — and increasingly steals a copy first — then demands payment for the decryption key and a promise not to leak the data. For an SMB it is often an extinction-level event. The controls that matter most are tested offline backups, phishing-resistant MFA on remote access, prompt patching of internet-facing systems, and network segmentation to slow lateral movement.