A guide to identify, remove and protect yourself against ransomware. This guide has simple steps to follow if you are a victim of ransomware. The first section will teach you how to identify ransomware and stop it from spreading. The second part will help you avoid another ransomware attack. An icon to indicate an error Never pay a ransom There is no guarantee you will regain access to your information. You may also be targeted by another attack. Call the Australian Cyber Security Centre 24/7 Hotline on 1300 CYBER1 (1300 292 371) if you need help. Identify and remove the ransomware Start here if you are experiencing a ransomware incident. Not all ransomware incidents are the same. So, some of the steps in this guide may not apply to your situation. Use the actions that best suit your situation. Consider hiring a professional if the affected systems or files are valuable to you. An icon to indicate an area of information Seek professional help Ransomware attacks can cause serious damage. It is hard to tackle and overcome it on your own. Find a professional to help you work through a ransomware attack, and get back on your feet. Step 1: Disconnect your devices Step 2: Stop the ransomware Step 3: Run a malware scan (Windows 10 only) Step 4: Write down key details Step 5: Get professional help Step 6: Notify and report Protect yourself against the next attack Learn how to increase your device and account security so that you are not vulnerable. Step 7: Protect yourself from future ransomware attacks
