2LRN4 security awareness platform
NL · EN
← Back to overview

What Is Ransomware?

Ransomware is malicious software that encrypts or locks computers and files, denying users access to their own data. Cybercriminals demand a ransom to restore access and increasingly threaten to leak stolen data if payment is not made.

In the e-learning What Is Ransomware?, employees learn how ransomware works and why these attacks have such a severe impact on organisations and individuals alike. Through clear explanations and realistic scenarios, the course shows how quickly a ransomware attack can spread. In some cases, attackers need only a few hours to take over an entire network.

The course emphasises that ransomware is not just a technical issue, but a human one. Phishing emails with malicious attachments or links remain the most common infection method. Employees learn how attackers disguise malware as invoices, PDFs or ZIP files, and how they exploit trust, curiosity and urgency.

Other infection routes are also covered, including compromised websites, malicious advertisements, outdated software, fake downloads and vulnerable browser plugins. The course also explains scareware: fake warnings designed to pressure users into taking harmful actions.

A key focus is on recognition and response. Participants learn how to recognise the warning signs of ransomware, what happens during encryption and what immediate actions are required to limit damage. The course clearly explains why quick action is essential and why attempting to fix the problem independently can worsen the situation.

Finally, the course provides practical prevention tips, such as creating offline backups, keeping software up to date and handling email attachments with care. This empowers employees to actively reduce the risk of ransomware incidents.

What will participants learn?

After completing this course, participants will:

  • understand what ransomware is and how it works
  • know how ransomware spreads, especially through phishing
  • recognise the signs of a ransomware infection
  • know what immediate actions to take if infection is suspected
  • understand the importance of backups and software updates
  • make informed decisions to reduce ransomware risk

Who is this course for?

This course is suitable for:

  • all employees, regardless of role or technical background
  • organisations aiming to prevent ransomware incidents
  • teams focusing on phishing and malware awareness
  • employees looking to strengthen their digital resilience

Why this course is relevant right now

Over 90% of successful ransomware attacks start with a phishing email. This course raises awareness, reduces the likelihood of infection and helps minimise impact when incidents occur.