Malware and ransomware

How to protect your device against malicious software, and what to do if cybercriminals are asking for ransom money to unlock your device or network.

On this page

Malware is a type of code or program that scammers use to steal your personal information. They will trick you into installing the software on your device and can then:

  • access your files
  • watch what you are doing on your device.

Ransomware is a type of malware that scammers use to block or limit access to your own device or files. They will then demand 'ransom' payment to unlock your files and allow access.

About malware

Scammers use malware to hack your device and access your information. They can then:

  • steal your account details
  • encrypt your data to block or limit your access
  • install other software without your knowledge.

Scammers can trick you to install malware in many different ways:

  • you may click on a link or attachment in a spam email or message
  • you may visit a malicious website that will attempt to install malware
  • they may find weak spots in your device's software
  • they may trick you into thinking you are downloading a legitimate software
  • they may trick you into thinking you are downloading a security or anti-virus software.

About ransomware

The cybercriminals who use ransomware will demand payment, often in cryptocurrency, to restore your access to your data. They will threaten to leak or sell your data online unless you pay.

If you have been affected by ransomware, visit ReportCyber for advice on what to do next.

Advice to protect yourself from malware

To help protect your devices from becoming infected with malware:

  • Think before you click on hyperlinks. Don’t click links in emails, text messages or on websites unless you know who the sender is. You can check where a hyperlink directs to by hovering your mouse over it. Don’t click on the link if you don’t recognise the website.
  • Keep your devices up to date with anti-virus and anti-spyware software and firewalls.
  • Monitor your devices and accounts for unusual activity.
  • Don’t trust pop-up windows that ask you to download software.
  • Update device operating systems and software applications to the latest versions.
  • Create passwords that aren’t easily guessed by others. Update your passwords regularly.
  • Enable multi-factor authentication on your accounts.

Learn more about multi-factor authentication and other ways to protect yourself from malware at the Australian Cyber Security Centre (ACSC)(opens in a new window).

If your device is infected with malware

If you suspect that your device is infected with malware:

  • Disconnect the device from the network or internet. Isolate the device until an IT professional can examine it.
  • Use anti-malware software to identify and get rid of malware.
  • Contact your bank or financial institution as soon as possible if you think someone has your financial details.
  • Visit IDCARE(opens in a new window) or call them on 1800 595 160(opens in a new window). They will help you with free, confidential advice on how to minimise the effects of identity theft and keep your online accounts safe.
  • Find out what to do next by using the ACSC’s Have you been hacked?(opens in a new window) application.

Advice to protect yourself from ransomware

Consider investing in backup systems for your device and network to help protect yourself from a ransomware attack. This will allow you to restore your device or network without having to pay an offender.

Think before you click on hyperlinks. Don’t click links in emails, text messages or on websites unless you know who the sender is. You can check where a hyperlink directs to by hovering your mouse over it. Don’t click on the link if you don’t recognise the website.

For more information and safety tips about malware and ransomware visit:

If your device is infected with ransomware

We do not recommend paying anyone a ransom fee to unlock your digital device or network. There is no guarantee the scammer will give you back control of your device or network.

For advice about what to do if you and your device are held to ransom visit Australian Cyber Security Centre(opens in a new window).

No More Ransom

No More Ransom(opens in a new window) is an international scheme offering free help to retrieve your data without paying cybercriminals.

No More Ransom is supported by the Australian Federal Police and other law enforcement and IT security companies worldwide. They provide:

  • ransomware crime prevention advice
  • decryption tools to help victims recover files.

Find out more at No More Ransom(opens in a new window).

Report a malware or ransomware incident

If cybercriminals have gained access to your files, device or network, you should report it to police at ReportCyber.

In an emergency, always call Triple Zero (000)(opens in a new window).

To help disrupt and follow scam trends, warn others about new scams and receive advice and support, report your experience to Scamwatch.

To find out more about reporting cybercrime visit Report online abuse, cybercrimes, fraud and scams.

Updated

Back to top