Ransomware has evolved from the random attacks we saw rise in 2016, to becoming a commercial model that attackers have started to follow. In Ransomware 2020 learn how the attacks have become much more targeted and considered, especially the dwell time before the final attack. Starting with the assumption that an organisation has been compromised in some way (e.g. phishing, drive-by, etc.) this session works through the various phases of the attack.