Ransomware can rapidly infect systems and spread across a company, creating serious problems for a business and its employees. Ransomware often begins with a phishing attempt. This is when an employee receives an email that appears legitimate, but actually contains malicious links or file attachments. The contents of these emails can allow an adversary to encrypt files on the company’s device and network drives, effectively locking the files and making the system inaccessible. Adversaries will then demand a ransom payment, often in Bitcoin or other cryptocurrencies, in order to relinquish access to the company files. What makes a ransomware attack even more effective is its ability to travel through a company’s network, starting from only a single compromised access point.