How does ransomware begin?

According to a new report from Palo Alto, the answer is primarily through email.

The report shows the top arrival protocols for ransomware. The biggest vector is SMTP, at 45%, followed by IMAP at 26.5%. When combined with POP3 (3.8%), you get the following: 75.3% of ransomware attacks arrive via email.


This chart breaks down common methods of ransomware delivery. As shown, SMTP and IMAP are the most common by far. Ransomware can also be delivered via web browsing, POP3 and FTP.

Source: Palo Alto

It's also worth noting that 22.3% starts from web browsing. That can mean many things, but it certainly means being sent via messaging apps like Slack and Microsoft Teams

What does this mean for you? It's yet another reminder that the best defense against ransomware comes through preventing phishing emails. 

When you reduce phishing emails reaching the inbox, you reduce the risk of ransomware. With Avanan, that reduction is as much as 99.2%. 

Ransomware is causing business leaders to stress, and understandably so. The high-profile nature of the attacks, combined with serious monetary and data damage, is cause for concern.

But there's action you can take. It starts with implementing an anti-phishing program that uses Artificial Intelligence and Machine Learning.

Avanan’s patented technology utilizes cutting-edge AI and machine learning, along with human input from end-users and trained researchers to catch the attacks that Microsoft and other security layers miss. 

Our technology deploys in five minutes and is embedded within Office 365 as an additional layer. It scans and prevents malicious emails before they hit the inbox, meaning end-users never see it and, most importantly, never click on it.

Ransomware doesn't have to keep you up at night. With proper protection, it can be defeated.

Get Your Demo Now