Ransomware (CYRUS)

This course provides company employees with the knowledge and skills needed to prevent and effectively respond to ransomware attacks. It covers how ransomware operates, strategies for prevention, and incident management. Participants will learn how to secure systems, recover data, and comply with legal requirements, using practical tools and real-world insights to better protect their organisation.

About this course

The course is developed within the framework of the CYRUS project, which aims to bring cybersecurity skills closer to employees, companies and SMEs in the manufacturing and transport sector. It is designed for individuals in roles that involve access to company networks, data and devices (including those working in IT, administration, security, management and even production), who possess an intermediate level of IT knowledge. 

It is particularly relevant for professionals representing the following sectors:

• Transport sector – including companies and institutions involved in the transportation of people and goods by land, sea or air, supporting the efficient operation of supply chains and social mobility.
• Manufacturing sector – focusing on cybersecurity challenges specific to the production industry and industrial environments.
• Small and medium-sized enterprises (SMEs) – seeking best practices in cybersecurity tailored to the needs of businesses of this size.

Course structure

The course consists of six in-depth modules, exploring the evolution and types of ransomware – from encrypting and locker variants to Ransomware-as-a-Service (RaaS). Participants will gain a thorough understanding of infection mechanisms, including phishing, malicious links, and software vulnerabilities. The course explains how ransomware spreads, evades detection and disables backups, offering a comprehensive view of the tactics and strategies used by cybercriminals.

The training also covers various methods of attack prevention, such as increasing employee awareness, implementing multi-layered security measures, and creating secure, regularly updated backups. In addition, it provides step-by-step guidance on responding to incidents.

Learning outcomes

Upon completing the course, participants will be able to:

• Understand the types of ransomware, methods of infection and their impact on organisations
• Implement multi-layered security measures, ensure reliable backups and raise staff awareness
• Manage ransomware incidents – from system isolation to full data recovery
• Strengthen organisational security using practical tools and techniques

More details

The training is free of charge and offered as e-learning, available on demand from April to October 2025. Access it here!