Cyber Doc logo Cyber Doc
Cybersecurity Term

What is malware?

Malicious software designed to steal information, disrupt systems, spy on users, or give attackers access.

Malware & Ransomware Last reviewed: 2026-05-20

← Back to Learn Centre

What is malware?

Malware is software designed to harm systems, steal information, spy on activity, or give attackers access to devices.

Simple example

A user opens a malicious attachment that installs software allowing an attacker to control the computer.

Why it matters

Malware can lead to data theft, ransomware, business interruption, and further compromise.

Common warning signs

  • The activity is unexpected or unusual for the business context.
  • The request or system behaviour creates pressure to act quickly.
  • Normal approval, verification, or security processes are bypassed.
  • There are signs of unauthorised access, data exposure, or system change.
  • Staff are unsure whether the request, message, or system behaviour is legitimate.

Cyber Doc view

This term should be understood in business context, not only as a technical issue. Good protection usually combines clear processes, appropriate technical controls, staff awareness, and a calm response plan.

What to do

Proactive steps

  • Keep devices and software updated.
  • Use endpoint protection.
  • Block risky attachments and downloads where possible.
  • Train staff to report suspicious files.
  • Use least privilege for everyday accounts.

Reactive steps

  • Disconnect the affected device from the network if compromise is suspected.
  • Do not delete evidence before investigation.
  • Run appropriate security checks or get expert help.
  • Change passwords from a clean device if credentials may be exposed.
  • Review logs and backups before restoring normal use.

Related terms

  • Ransomware
  • Trojan
  • Endpoint protection