Ransomware
Malicious software that encrypts a victim's files or locks their systems, demanding payment (a ransom) to restore access.
Ransomware is a type of malware that locks you out of your own files or computer systems by encrypting them. The attackers then demand a ransom — usually in cryptocurrency — to give you back access. Malaysian businesses of all sizes have been hit, from hospitals to small retail shops.
Why Malaysian SMEs Are at Risk
Small and medium enterprises (SMEs) in Malaysia are prime targets because they often lack dedicated IT security teams and may not have proper backup systems. Attackers know that a business that cannot access its customer records, invoices, or inventory systems will feel pressure to pay quickly.
Never Pay the Ransom
CyberSecurity Malaysia and law enforcement strongly advise against paying ransoms. Payment does not guarantee your data will be restored, and it funds further criminal activity. Instead, report the incident to MyCERT and restore from backups.
Prevention Steps
- Maintain regular offline backups (3-2-1 rule: 3 copies, 2 different media, 1 offsite)
- Keep all software and operating systems updated with security patches
- Train employees to recognise phishing emails — the most common ransomware delivery method
- Use endpoint protection software on all company devices
- Segment your network so an infection cannot spread to all systems