What type of malware is identified when a user's files are encrypted and a ransom is demanded for decryption?

Ransomware is a type of malicious software that encrypts a user's files, rendering them inaccessible until a ransom is paid to the attacker for the decryption key. This form of malware can cause significant disruption and panic, as users are often unable to access their critical files and data. The attackers typically display a ransom note on the infected system, informing the victim of the attack and providing instructions on how to make the payment, often in cryptocurrency, to ensure anonymity.

Ransomware distinguishes itself from other types of malware because its primary objective is financial gain through coercion. While spyware is designed to secretly collect user data and monitor activity, rootkits provide unauthorized access and control over a computer without the user's knowledge, and adware displays unwanted advertisements, these do not involve file encryption in exchange for ransom. Ransomware’s specific mechanism of demanding payment for file recovery makes it a unique and particularly damaging threat in the landscape of cybersecurity.