Front Page: NCSC-FI
Front Page: NCSC-FI

What to do in case of a ransomware incident - instructions for management

Ransomware refers to a cyber attack in which the attackers aim to encrypt the organisation’s data with an encryption algorithm and demand a ransom to restore the data. The criminals may also steal the data they have encrypted and blackmail the organisation with a data leak. 

The right kind of preparation for ransomware attacks clearly improves the level of information security of organisations and their resilience in the face of ransomware as well as other potential attacks.

The goal of these instructions is to offer guidance for the top management of organisations on what to do in case of a ransomware incident.