"Malware" is one of those words we hear constantly without ever quite pinning down. It is not a single thing, and it is not only a problem for big companies or careless people. It is a whole family of malicious programs, and a basic understanding of how they work is the foundation of staying safe online.

The good news: the same handful of sensible habits defends against almost all of it.

What malware is

Malware, short for malicious software, is any program written deliberately to harm, hijack, disrupt or spy on a device or its owner.

That broad definition covers a lot of ground, from a program that quietly steals your passwords to one that locks every file you own. What unites them is intent: malware is built to work against you, usually for money, data or control. The differences between types come down to how they spread and what damage they do.

The main types of malware

You do not need to be an expert, but recognising the common categories helps you understand the threats and the warnings you see.

TypeWhat it does
VirusAttaches to files or programs and spreads when they are opened or run.
WormSpreads by itself across networks, without needing you to do anything.
TrojanDisguises itself as something useful to trick you into installing it.
RansomwareEncrypts your files and demands payment to unlock them.
SpywareSecretly monitors what you do, capturing data like passwords.
AdwareBombards you with unwanted ads, sometimes bundling other malware.
KeyloggerRecords every keystroke, often to steal logins and card numbers.

Modern attacks frequently combine these. A trojan might pose as a free app, then quietly install spyware that harvests your banking details, for example.

Ransomware, the headline threat

Of all the categories, ransomware causes some of the most serious damage to individuals and organisations alike. It encrypts your files — photos, documents, everything — and demands a payment, usually in cryptocurrency, in exchange for the key.

Authorities generally advise against paying. It funds criminal operations and offers no guarantee you will get your files back.

The reliable defence is not paying but preparation. A separate, tested backup lets you wipe the device and restore your files without negotiating with anyone. Our guide to cloud backup and the 3-2-1 rule explains how to set one up so that ransomware becomes an inconvenience rather than a disaster.

How infections actually happen

It is tempting to imagine malware as something that strikes out of nowhere, but most infections begin with a human action the attacker tricked you into taking. The usual routes are:

  • Phishing links and attachments. A convincing email or text persuades you to click or open something. This is why knowing how to spot phishing emails is front-line protection.
  • Untrusted downloads. Pirated software, fake "updates", and apps from unofficial stores are classic carriers.
  • Malicious or compromised websites that exploit an out-of-date browser or plug-in.
  • Infected USB sticks and other removable media.
  • Unpatched software, where attackers exploit a known weakness that an update would have closed.

Notice the pattern: most of these rely on either tricking you or finding software you have not updated. Both are within your control.

How to protect yourself

You do not need to be a security professional to be well protected. A layered set of habits stops the overwhelming majority of attacks:

  1. Keep everything updated. Turn on automatic updates for your operating system, browser and apps. Many attacks exploit flaws that were already fixed in an update people had not installed.
  2. Use reputable security software. Many devices include capable protection built in; keep it switched on and current.
  3. Think before you click. Be cautious with unexpected links, attachments and download prompts, however urgent or tempting they seem.
  4. Install apps only from trusted sources, such as official app stores and verified developers.
  5. Use strong, unique passwords and two-factor authentication, so that even if a password is stolen, the damage is contained. A password manager makes this effortless.
  6. Back up your data regularly and test that you can restore it.
  7. Be wary of unknown USB devices — do not plug in sticks you found or were handed by strangers.

What to do if you are infected

If you suspect malware, act calmly and in order:

  • Disconnect from the internet to stop data being sent out or the infection spreading.
  • Run a full scan with your security software.
  • Change important passwords from a different, clean device — not the infected one, which may be capturing what you type.
  • Restore from a clean backup if files are damaged or encrypted, rather than paying any ransom.
  • Seek help if it is a work device or you are unsure; report serious incidents to the relevant authorities.

Because malware is so often the goal of a successful scam, treat the clean-up as the start of a wider review: change reused passwords, check your accounts for unexpected activity, and confirm your backups are intact.

The bottom line

Malware is the umbrella term for software built to harm you, spanning viruses, worms, trojans, ransomware, spyware and more. Most infections begin with a click on a bad link, an untrusted download, or unpatched software — all things you can guard against.

Keep your software updated, use reputable security tools, be sceptical of unexpected links and downloads, and keep a tested backup. Those everyday habits, not any single product, are what keep malware out of your digital life.