What does ransomware typically do to a victim's digital files?

Ransomware is a type of malicious software that primarily functions by encrypting a victim's files, rendering them inaccessible until a ransom is paid to the attacker. This process involves scrambling the data within the files so that legitimate users cannot access or read them without the decryption key, which is typically provided only after the ransom is paid. The main goal of ransomware is to coerce individuals or organizations into paying money in exchange for regaining access to their own files, making encryption the hallmark technique of this type of cyberattack.

In contrast, other options do not accurately reflect the primary behavior of ransomware. While locking files for a fixed duration might imply temporary inaccessibility, the defining feature of ransomware is the permanent encryption until payment is made. The option of publicly announcing contents does not align with the covert nature of ransomware attacks, as attackers generally aim to maintain control and secrecy rather than disclose data to the public. Copying files for the attacker’s use is more characteristic of data theft rather than the core function of ransomware, which centers around encrypting files to extort money from victims.