{"id":1562,"date":"2026-06-09T00:00:00","date_gmt":"2026-06-09T00:00:00","guid":{"rendered":"https:\/\/www.knoxtera.com\/?p=1562"},"modified":"2026-06-08T06:23:06","modified_gmt":"2026-06-08T06:23:06","slug":"jak-dziala-atak-ransomware-droga-od-e-maila-do-sparalizowanej-firmy","status":"publish","type":"post","link":"https:\/\/www.knoxtera.com\/en\/jak-dziala-atak-ransomware-droga-od-e-maila-do-sparalizowanej-firmy\/","title":{"rendered":"Jak dzia\u0142a atak\u00a0ransomware"},"content":{"rendered":"\t\t<div data-elementor-type=\"wp-post\" data-elementor-id=\"1562\" class=\"elementor elementor-1562\" data-elementor-post-type=\"post\">\n\t\t\t\t<div class=\"elementor-element elementor-element-d94d4cf e-flex e-con-boxed e-con e-parent\" data-id=\"d94d4cf\" data-element_type=\"container\" data-e-type=\"container\">\n\t\t\t\t\t<div class=\"e-con-inner\">\n\t\t\t\t<div class=\"elementor-element elementor-element-fe51728 elementor-widget elementor-widget-heading\" data-id=\"fe51728\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t\t<h2 class=\"elementor-heading-title elementor-size-default\">11 dni do katastrofy: Dlaczego Twoje IT nie zauwa\u017cy, \u017ce w\u0142a\u015bnie trwa atak ransomware? <\/h2>\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-c780b7b elementor-widget elementor-widget-text-editor\" data-id=\"c780b7b\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t\t\t\t\t\t<p><span data-contrast=\"auto\">Wi\u0119kszo\u015b\u0107 mened\u017cer\u00f3w i w\u0142a\u015bcicieli firm wyobra\u017ca sobie atak\u00a0ransomware\u00a0jako nag\u0142e uderzenie pioruna. Jedno klikni\u0119cie, b\u0142ysk na ekranie i napisy w kolorze krwistej czerwieni informuj\u0105ce o blokadzie plik\u00f3w.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p><p><span data-contrast=\"auto\">Rzeczywisto\u015b\u0107 jest znacznie bardziej podst\u0119pna.\u00a0<\/span><b><span data-contrast=\"auto\">Atak\u00a0ransomware\u00a0to nie incydent \u2013 to wieloetapowy proces<\/span><\/b><span data-contrast=\"auto\">, kt\u00f3ry zazwyczaj trwa od kilku dni do kilku tygodni. To metodyczne dzia\u0142anie, w kt\u00f3rym szyfrowanie danych jest jedynie ostatnim akordem d\u0142ugiej operacji.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t<div class=\"elementor-element elementor-element-d280ac1 e-flex e-con-boxed e-con e-parent\" data-id=\"d280ac1\" data-element_type=\"container\" data-e-type=\"container\">\n\t\t\t\t\t<div class=\"e-con-inner\">\n\t\t\t\t<div class=\"elementor-element elementor-element-0338111 elementor-widget elementor-widget-text-editor\" data-id=\"0338111\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t\t\t\t\t\t<p><span class=\"TextRun SCXW194312254 BCX8\" lang=\"PL-PL\" xml:lang=\"PL-PL\" data-contrast=\"auto\"><span class=\"NormalTextRun SCXW194312254 BCX8\">Dobra wiadomo\u015b\u0107? Ten czas to Twoje &#8222;okno mo\u017cliwo\u015bci&#8221;. Na ka\u017cdym etapie napastnicy zostawiaj\u0105 \u015blady. Z\u0142a wiadomo\u015b\u0107? Tradycyjne zespo\u0142y IT, zaj\u0119te bie\u017c\u0105cym wsparciem u\u017cytkownik\u00f3w, rzadko maj\u0105 narz\u0119dzia i czas, by te \u015blady dostrzec. Prze\u015bled\u017amy, jak wygl\u0105da te 11 dni, kt\u00f3re mog\u0105 zadecydowa\u0107 o by\u0107 albo nie by\u0107 Twojej firmy.<\/span><\/span><\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t<div class=\"elementor-element elementor-element-48edf7e e-flex e-con-boxed e-con e-parent\" data-id=\"48edf7e\" data-element_type=\"container\" data-e-type=\"container\">\n\t\t\t\t\t<div class=\"e-con-inner\">\n\t\t\t\t<div class=\"elementor-element elementor-element-2904a86 elementor-widget elementor-widget-text-editor\" data-id=\"2904a86\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t\t\t\t\t\t<h2 class=\"elementor-heading-title elementor-size-default elementor-inline-editing pen\" contenteditable=\"true\" data-elementor-setting-key=\"title\" data-pen-placeholder=\"Pisz tutaj...\">Dzie\u0144 0: E-mail, kt\u00f3ry nie wzbudzi\u0142 podejrze\u0144 \u200b<\/h2>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t<div class=\"elementor-element elementor-element-72f6363 e-flex e-con-boxed e-con e-parent\" data-id=\"72f6363\" data-element_type=\"container\" data-e-type=\"container\">\n\t\t\t\t\t<div class=\"e-con-inner\">\n\t\t\t\t<div class=\"elementor-element elementor-element-333eba6 elementor-widget elementor-widget-text-editor\" data-id=\"333eba6\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t\t\t\t\t\t<p><span data-contrast=\"auto\">Jest poniedzia\u0142ek, godzina 9:14. Anna z dzia\u0142u ksi\u0119gowo\u015bci otwiera skrzynk\u0119. W\u015br\u00f3d dziesi\u0105tek wiadomo\u015bci znajduje jedn\u0105 zatytu\u0142owan\u0105:\u00a0<\/span><i><span data-contrast=\"auto\">\u201ePilne: faktura do weryfikacji \u2013 termin p\u0142atno\u015bci dzi\u015b\u201d<\/span><\/i><span data-contrast=\"auto\">. Nadawca wygl\u0105da znajomo, domena r\u00f3\u017cni si\u0119 tylko jedn\u0105 liter\u0105 od adresu sta\u0142ego dostawcy.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p><p><span data-contrast=\"auto\">Anna otwiera za\u0142\u0105czony plik Excel. Program prosi o \u201eW\u0142\u0105czenie zawarto\u015bci\u201d w celu poprawnego wy\u015bwietlenia tabeli. Anna klika przycisk. To rutynowa czynno\u015b\u0107, kt\u00f3r\u0105 wykonywa\u0142a setki razy.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t<div class=\"elementor-element elementor-element-6aecce8 e-flex e-con-boxed e-con e-parent\" data-id=\"6aecce8\" data-element_type=\"container\" data-e-type=\"container\">\n\t\t\t\t\t<div class=\"e-con-inner\">\n\t\t\t\t<div class=\"elementor-element elementor-element-2dadc32 elementor-widget elementor-widget-text-editor\" data-id=\"2dadc32\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t\t\t\t\t\t<p><b><span data-contrast=\"auto\">Co sta\u0142o si\u0119 pod mask\u0105?<\/span><\/b><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p data-path-to-node=\"1\">Nale\u017cy zauwa\u017cy\u0107, \u017ce<span class=\"\"> w momencie klikni\u0119cia ukryte makro natychmiast uruchomi\u0142o skrypt PowerShell,<\/span><span class=\"\"> kt\u00f3ry stanowi\u0142 pierwotny <\/span>wektor ataku<span class=\"\">.<\/span><span class=\"\"> Ten z kolei pobra\u0142 z sieci niewielk\u0105 aplikacj\u0119 \u2013 tzw.<\/span> loader<span class=\"\">.<\/span> W praktyce<span class=\"\"> to <\/span>z\u0142o\u015bliwe oprogramowanie<span class=\"\"> zainstalowa\u0142o si\u0119 w folderze tymczasowym i nawi\u0105za\u0142o ciche po\u0142\u0105czenie z serwerem C2 (Command &amp; Control) nale\u017c\u0105cym do haker\u00f3w.<\/span><\/p>\n<p data-path-to-node=\"2\">Co istotne<span class=\"\">,<\/span><span class=\"\"> komputer Anny wci\u0105\u017c dzia\u0142a normalnie,<\/span><span class=\"\"> co skutecznie usypia czujno\u015b\u0107 u\u017cytkownika.<\/span> W rezultacie<span class=\"\"> Anna spokojnie pije kaw\u0119,<\/span><span class=\"\"> kompletnie nie\u015bwiadoma,<\/span><span class=\"\"> \u017ce w\u0142a\u015bnie otworzy\u0142a cyfrowe drzwi w\u0142amywaczom.<\/span> Warto podkre\u015bli\u0107, \u017ce<span class=\"\"> na tym etapie tylko zaawansowana <\/span>analiza zagro\u017ce\u0144<span class=\"\"> i monitoring proces\u00f3w w czasie rzeczywistym mog\u0142yby wykry\u0107 t\u0119 anomali\u0119,<\/span><span class=\"\"> zanim hakerzy rozpoczn\u0105 dalsz\u0105 infiltracj\u0119.<\/span><\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t<div class=\"elementor-element elementor-element-78d761c e-flex e-con-boxed e-con e-parent\" data-id=\"78d761c\" data-element_type=\"container\" data-e-type=\"container\">\n\t\t\t\t\t<div class=\"e-con-inner\">\n\t\t\t\t<div class=\"elementor-element elementor-element-893c53e elementor-widget elementor-widget-text-editor\" data-id=\"893c53e\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t\t\t\t\t\t<p><b><span data-contrast=\"auto\">Gdzie SOC wykry\u0142by atak?<\/span><\/b><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p>Nale\u017cy jednak podkre\u015bli\u0107, \u017ce profesjonalne systemy monitoringu klasy EDR\/XDR natychmiast wychwyci\u0142yby tak\u0105 anomali\u0119. W praktyce algorytmy bezpiecze\u0144stwa uzna\u0142yby podejrzane wywo\u0142anie proces\u00f3w PowerShell przez program Excel za dzia\u0142anie o wysokim ryzyku. Co wi\u0119cej, systemy te automatycznie zablokowa\u0142yby ka\u017cd\u0105 pr\u00f3b\u0119 nawi\u0105zania po\u0142\u0105czenia z serwerem o niskiej reputacji. W rezultacie odpowiednio skonfigurowane narz\u0119dzia zdusi\u0142yby ten atak w zarodku, zanim hakerzy zdo\u0142aliby pobra\u0107 loader i przej\u0105\u0107 kontrol\u0119 nad stacj\u0105 robocz\u0105.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t<div class=\"elementor-element elementor-element-f7bde9e e-flex e-con-boxed e-con e-parent\" data-id=\"f7bde9e\" data-element_type=\"container\" data-e-type=\"container\">\n\t\t\t\t\t<div class=\"e-con-inner\">\n\t\t\t\t<div class=\"elementor-element elementor-element-172501c elementor-widget elementor-widget-text-editor\" data-id=\"172501c\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t\t\t\t\t\t<h2 class=\"elementor-heading-title elementor-size-default elementor-inline-editing pen\" contenteditable=\"true\" data-elementor-setting-key=\"title\" data-pen-placeholder=\"Pisz tutaj...\">Dzie\u0144 1\u20133: Ciche rozpoznanie terenu\u200b<\/h2>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t<div class=\"elementor-element elementor-element-bd95bab e-flex e-con-boxed e-con e-parent\" data-id=\"bd95bab\" data-element_type=\"container\" data-e-type=\"container\">\n\t\t\t\t\t<div class=\"e-con-inner\">\n\t\t\t\t<div class=\"elementor-element elementor-element-080612e elementor-widget elementor-widget-text-editor\" data-id=\"080612e\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t\t\t\t\t\t<p><span data-contrast=\"auto\">Hakerzy nie spiesz\u0105 si\u0119. Przez kolejne trzy dni\u00a0loader\u00a0na komputerze Anny s\u0142u\u017cy im jako przycz\u00f3\u0142ek. Atakuj\u0105cy zbieraj\u0105 informacje:<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p><ul><li aria-setsize=\"-1\" data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"30\" data-list-defn-props=\"{&quot;335552541&quot;:1,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;\uf0b7&quot;,&quot;469777815&quot;:&quot;multilevel&quot;}\" data-aria-posinset=\"1\" data-aria-level=\"1\"><span data-contrast=\"auto\">Jakie oprogramowanie jest zainstalowane w sieci?<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/li><\/ul><ul><li aria-setsize=\"-1\" data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"30\" data-list-defn-props=\"{&quot;335552541&quot;:1,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;\uf0b7&quot;,&quot;469777815&quot;:&quot;multilevel&quot;}\" data-aria-posinset=\"2\" data-aria-level=\"1\"><span data-contrast=\"auto\">Jakie uprawnienia ma Anna?<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/li><\/ul><ul><li aria-setsize=\"-1\" data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"30\" data-list-defn-props=\"{&quot;335552541&quot;:1,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;\uf0b7&quot;,&quot;469777815&quot;:&quot;multilevel&quot;}\" data-aria-posinset=\"3\" data-aria-level=\"1\"><span data-contrast=\"auto\">Gdzie znajduj\u0105 si\u0119 serwery z najwa\u017cniejszymi danymi?<\/span><span data-ccp-props=\"{}\">\u00a0<br \/><br \/><\/span><\/li><\/ul><p><span data-contrast=\"auto\">To faza\u00a0<\/span><b><span data-contrast=\"auto\">reconnaissance<\/span><\/b><span data-contrast=\"auto\">. Ruch generowany przez haker\u00f3w jest minimalny, by nie wzbudzi\u0107 alert\u00f3w prostych program\u00f3w antywirusowych.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t<div class=\"elementor-element elementor-element-2f265cb e-flex e-con-boxed e-con e-parent\" data-id=\"2f265cb\" data-element_type=\"container\" data-e-type=\"container\">\n\t\t\t\t\t<div class=\"e-con-inner\">\n\t\t\t\t<div class=\"elementor-element elementor-element-3d24d5b elementor-widget elementor-widget-text-editor\" data-id=\"3d24d5b\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t\t\t\t\t\t<h2 class=\"elementor-heading-title elementor-size-default elementor-inline-editing pen\" contenteditable=\"true\" data-elementor-setting-key=\"title\" data-pen-placeholder=\"Pisz tutaj...\">Dzie\u0144 4\u20137: Przej\u0119cie kluczy do kr\u00f3lestwa\u200b<\/h2>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-e522e24 elementor-widget elementor-widget-text-editor\" data-id=\"e522e24\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t\t\t\t\t\t<p data-path-to-node=\"1\">Warto podkre\u015bli\u0107, \u017ce zanim nast\u0105pi atak w\u0142a\u015bciwy, hakerzy realizuj\u0105 strategi\u0119, kt\u00f3r\u0105 eksperci nazywaj\u0105 double extortion (podw\u00f3jnym wymuszeniem). Dzieje si\u0119 tak, poniewa\u017c przest\u0119pcy doskonale wiedz\u0105, \u017ce mo\u017cesz posiada\u0107 sprawne kopie zapasowe. W zwi\u0105zku z tym najpierw kradn\u0105 Twoje najbardziej wra\u017cliwe dane, aby w kolejnym kroku szanta\u017cowa\u0107 firm\u0119 ich publicznym ujawnieniem.<\/p>\n<p data-path-to-node=\"2\">W praktyce napastnicy metodycznie kopiuj\u0105 bazy klient\u00f3w, poufne umowy oraz kluczowe dane finansowe. Co istotne, transfer tych informacji odbywa si\u0119 ma\u0142ymi paczkami \u2013 najcz\u0119\u015bciej w godzinach nocnych \u2013 przy wykorzystaniu standardowych port\u00f3w HTTPS. W rezultacie proces ten niemal idealnie maskuje si\u0119 pod postaci\u0105 zwyk\u0142ego ruchu internetowego, co czyni go praktycznie niewidocznym dla standardowych zabezpiecze\u0144.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t<div class=\"elementor-element elementor-element-6f456bd e-flex e-con-boxed e-con e-parent\" data-id=\"6f456bd\" data-element_type=\"container\" data-e-type=\"container\">\n\t\t\t\t\t<div class=\"e-con-inner\">\n\t\t\t\t<div class=\"elementor-element elementor-element-3576338 elementor-widget elementor-widget-text-editor\" data-id=\"3576338\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t\t\t\t\t\t<h2 class=\"elementor-heading-title elementor-size-default elementor-inline-editing pen\" contenteditable=\"true\" data-elementor-setting-key=\"title\" data-pen-placeholder=\"Pisz tutaj...\">Dzie\u0144 11: Godzina zero i niedzielny poranek \u200b<\/h2>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t<div class=\"elementor-element elementor-element-465c0f9 e-flex e-con-boxed e-con e-parent\" data-id=\"465c0f9\" data-element_type=\"container\" data-e-type=\"container\">\n\t\t\t\t\t<div class=\"e-con-inner\">\n\t\t\t\t<div class=\"elementor-element elementor-element-605beb8 elementor-widget elementor-widget-text-editor\" data-id=\"605beb8\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t\t\t\t\t\t<p><span data-contrast=\"auto\">Jest niedziela, godzina 3:00 nad ranem. To idealny moment \u2013 nikt nie patrzy na monitory, a zesp\u00f3\u0142 IT odpoczywa przed nowym tygodniem. Atakuj\u0105cy uruchamiaj\u0105 procedur\u0119 szyfrowania.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p><p><span data-contrast=\"auto\">W ci\u0105gu kilku godzin:<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p><ol><li aria-setsize=\"-1\" data-leveltext=\"%1.\" data-font=\"\" data-listid=\"31\" data-list-defn-props=\"{&quot;335552541&quot;:0,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769242&quot;:[65533,0],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;%1.&quot;,&quot;469777815&quot;:&quot;multilevel&quot;}\" data-aria-posinset=\"1\" data-aria-level=\"1\"><span data-contrast=\"auto\">Szyfrowane s\u0105 g\u0142\u00f3wne bazy danych i systemy ERP.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/li><\/ol><ol><li aria-setsize=\"-1\" data-leveltext=\"%1.\" data-font=\"\" data-listid=\"31\" data-list-defn-props=\"{&quot;335552541&quot;:0,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769242&quot;:[65533,0],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;%1.&quot;,&quot;469777815&quot;:&quot;multilevel&quot;}\" data-aria-posinset=\"2\" data-aria-level=\"1\"><span data-contrast=\"auto\">Usuwane s\u0105 kopie zapasowe (Volume\u00a0Shadow\u00a0Copies) dost\u0119pne w sieci.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/li><\/ol><ol><li aria-setsize=\"-1\" data-leveltext=\"%1.\" data-font=\"\" data-listid=\"31\" data-list-defn-props=\"{&quot;335552541&quot;:0,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769242&quot;:[65533,0],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;%1.&quot;,&quot;469777815&quot;:&quot;multilevel&quot;}\" data-aria-posinset=\"3\" data-aria-level=\"1\"><span data-contrast=\"auto\">Na ekranach wszystkich komputer\u00f3w pojawia si\u0119 \u017c\u0105danie okupu:\u00a0<\/span><b><span data-contrast=\"auto\">50 BTC<\/span><\/b><span data-contrast=\"auto\">.<\/span><span data-ccp-props=\"{}\">\u00a0<br \/><br \/><\/span><\/li><\/ol><p><span data-contrast=\"auto\">W poniedzia\u0142ek rano pracownicy zastaj\u0105 zablokowane stacje robocze. Firma staje w miejscu. Produkcja stoi, logistyka nie wie, gdzie wys\u0142a\u0107 towar, a zarz\u0105d dowiaduje si\u0119 od medi\u00f3w, \u017ce pr\u00f3bka ich danych wyciek\u0142a w\u0142a\u015bnie do\u00a0dark\u00a0webu.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t<div class=\"elementor-element elementor-element-32d934b e-flex e-con-boxed e-con e-parent\" data-id=\"32d934b\" data-element_type=\"container\" data-e-type=\"container\">\n\t\t\t\t\t<div class=\"e-con-inner\">\n\t\t\t\t<div class=\"elementor-element elementor-element-917c1af elementor-widget elementor-widget-heading\" data-id=\"917c1af\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t\t<h2 class=\"elementor-heading-title elementor-size-default\">Podsumowanie: Czy mo\u017cna by\u0142o tego unikn\u0105\u0107? <\/h2>\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-29147a6 elementor-widget elementor-widget-text-editor\" data-id=\"29147a6\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t\t\t\t\t\t<p><span class=\"TextRun SCXW157113844 BCX8\" lang=\"PL-PL\" xml:lang=\"PL-PL\" data-contrast=\"auto\"><span class=\"NormalTextRun SCXW157113844 BCX8\">Poni\u017csza tabela pokazuje, \u017ce hakerzy dali nam co najmniej kilka szans na zatrzymanie tej katastrofy:<\/span><\/span><span class=\"EOP SCXW157113844 BCX8\" data-ccp-props=\"{}\">\u00a0<\/span><\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t<div class=\"elementor-element elementor-element-6f5d9b8 e-flex e-con-boxed e-con e-parent\" data-id=\"6f5d9b8\" data-element_type=\"container\" data-e-type=\"container\">\n\t\t\t\t\t<div class=\"e-con-inner\">\n\t\t\t\t<div class=\"elementor-element elementor-element-6fa87c4 elementor-widget elementor-widget-image\" data-id=\"6fa87c4\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"image.default\">\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<img fetchpriority=\"high\" decoding=\"async\" width=\"768\" height=\"721\" src=\"https:\/\/www.knoxtera.com\/wp-content\/uploads\/2026\/04\/SOC-img-wew-PION-5-768x721.png\" class=\"attachment-medium_large size-medium_large wp-image-1668\" alt=\"\" srcset=\"https:\/\/www.knoxtera.com\/wp-content\/uploads\/2026\/04\/SOC-img-wew-PION-5-768x721.png 768w, https:\/\/www.knoxtera.com\/wp-content\/uploads\/2026\/04\/SOC-img-wew-PION-5-300x281.png 300w, https:\/\/www.knoxtera.com\/wp-content\/uploads\/2026\/04\/SOC-img-wew-PION-5-1024x961.png 1024w, https:\/\/www.knoxtera.com\/wp-content\/uploads\/2026\/04\/SOC-img-wew-PION-5-1536x1441.png 1536w, https:\/\/www.knoxtera.com\/wp-content\/uploads\/2026\/04\/SOC-img-wew-PION-5-2048x1921.png 2048w, https:\/\/www.knoxtera.com\/wp-content\/uploads\/2026\/04\/SOC-img-wew-PION-5-13x12.png 13w\" sizes=\"(max-width: 768px) 100vw, 768px\" \/>\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t<div class=\"elementor-element elementor-element-b68f12e e-flex e-con-boxed e-con e-parent\" data-id=\"b68f12e\" data-element_type=\"container\" data-e-type=\"container\">\n\t\t\t\t\t<div class=\"e-con-inner\">\n\t\t\t\t<div class=\"elementor-element elementor-element-38e79ab elementor-widget elementor-widget-text-editor\" data-id=\"38e79ab\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t\t\t\t\t\t<p><b><span data-contrast=\"auto\">Jak SOC zmienia regu\u0142y gry?<\/span><\/b><span data-ccp-props=\"{}\">\u00a0<\/span><\/p><p><span data-contrast=\"auto\">Security Operations Center (SOC) nie jest po to, by tylko blokowa\u0107 e-maile. Jego zadaniem jest\u00a0<\/span><b><span data-contrast=\"auto\">detekcja anomalii w czasie rzeczywistym<\/span><\/b><span data-contrast=\"auto\">.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p><p><span data-contrast=\"auto\">Gdyby firma z naszej historii posiada\u0142a wsparcie SOC, atak prawdopodobnie sko\u0144czy\u0142by si\u0119 w\u00a0<\/span><b><span data-contrast=\"auto\">Dniu 0<\/span><\/b><span data-contrast=\"auto\">\u00a0izolacj\u0105 komputera Anny i wymuszeniem zmiany has\u0142a. Straty? 15 minut pracy ksi\u0119gowej. Koszt braku SOC? Setki tysi\u0119cy, a czasem miliony z\u0142otych strat operacyjnych i wizerunkowych.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p><p><b><span data-contrast=\"auto\">Nie czekaj na plansz\u0119 z \u017c\u0105daniem okupu<\/span><\/b><span data-ccp-props=\"{}\">\u00a0<\/span><\/p><p><span data-contrast=\"auto\">Atak\u00a0ransomware\u00a0to nie kwestia \u201eczy\u201d, ale \u201ekiedy\u201d. Prawdziwa r\u00f3\u017cnica mi\u0119dzy drobnym incydentem a upadkiem firmy polega na tym, jak szybko zorientujesz si\u0119, \u017ce kto\u015b obcy jest w Twojej sieci.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t","protected":false},"excerpt":{"rendered":"<p>11 dni do katastrofy: Dlaczego Twoje IT nie zauwa\u017cy, \u017ce w\u0142a\u015bnie trwa atak ransomware? Wi\u0119kszo\u015b\u0107 mened\u017cer\u00f3w i w\u0142a\u015bcicieli firm wyobra\u017ca sobie atak\u00a0ransomware\u00a0jako nag\u0142e uderzenie pioruna. Jedno klikni\u0119cie, b\u0142ysk na ekranie i napisy w kolorze krwistej czerwieni informuj\u0105ce o blokadzie plik\u00f3w.\u00a0 Rzeczywisto\u015b\u0107 jest znacznie bardziej podst\u0119pna.\u00a0Atak\u00a0ransomware\u00a0to nie incydent \u2013 to wieloetapowy proces, kt\u00f3ry zazwyczaj trwa od [&hellip;]<\/p>\n","protected":false},"author":4,"featured_media":234,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-1562","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-uncategorized"],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v27.3 (Yoast SEO v28.0) - https:\/\/yoast.com\/product\/yoast-seo-premium-wordpress\/ -->\n<title>Anatomia ataku ransomware: 11 dni do katastrofy -<\/title>\n<meta name=\"description\" content=\"Czy ransomware to nag\u0142y wybuch? Nie, to proces. Zobacz realistyczny scenariusz ataku krok po kroku i dowiedz si\u0119, jak SOC mo\u017ce go zatrzyma\u0107.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.knoxtera.com\/en\/jak-dziala-atak-ransomware-droga-od-e-maila-do-sparalizowanej-firmy\/\" \/>\n<meta property=\"og:locale\" content=\"en_GB\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Jak dzia\u0142a atak\u00a0ransomware\" \/>\n<meta property=\"og:description\" content=\"Czy ransomware to nag\u0142y wybuch? Nie, to proces. Zobacz realistyczny scenariusz ataku krok po kroku i dowiedz si\u0119, jak SOC mo\u017ce go zatrzyma\u0107.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.knoxtera.com\/en\/jak-dziala-atak-ransomware-droga-od-e-maila-do-sparalizowanej-firmy\/\" \/>\n<meta property=\"og:site_name\" content=\"Strong security Smooth operations\" \/>\n<meta property=\"article:published_time\" content=\"2026-06-09T00:00:00+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.knoxtera.com\/wp-content\/uploads\/2026\/02\/employer-or-recruiter-holding-reading-a-resume-wit-2026-01-05-04-54-14-utc-scaled.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"2560\" \/>\n\t<meta property=\"og:image:height\" content=\"1580\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Karolina Ole\u015bko\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Karolina Ole\u015bko\" \/>\n\t<meta name=\"twitter:label2\" content=\"Estimated reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"5 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.knoxtera.com\\\/jak-dziala-atak-ransomware-droga-od-e-maila-do-sparalizowanej-firmy\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.knoxtera.com\\\/jak-dziala-atak-ransomware-droga-od-e-maila-do-sparalizowanej-firmy\\\/\"},\"author\":{\"name\":\"Karolina Ole\u015bko\",\"@id\":\"https:\\\/\\\/www.knoxtera.com\\\/#\\\/schema\\\/person\\\/93bcfdec5e7047cb9e4d2dadf1c90910\"},\"headline\":\"Jak dzia\u0142a atak\u00a0ransomware\",\"datePublished\":\"2026-06-09T00:00:00+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.knoxtera.com\\\/jak-dziala-atak-ransomware-droga-od-e-maila-do-sparalizowanej-firmy\\\/\"},\"wordCount\":899,\"publisher\":{\"@id\":\"https:\\\/\\\/www.knoxtera.com\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.knoxtera.com\\\/jak-dziala-atak-ransomware-droga-od-e-maila-do-sparalizowanej-firmy\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.knoxtera.com\\\/wp-content\\\/uploads\\\/2026\\\/02\\\/employer-or-recruiter-holding-reading-a-resume-wit-2026-01-05-04-54-14-utc-scaled.jpg\",\"articleSection\":[\"Uncategorized\"],\"inLanguage\":\"en-GB\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.knoxtera.com\\\/jak-dziala-atak-ransomware-droga-od-e-maila-do-sparalizowanej-firmy\\\/\",\"url\":\"https:\\\/\\\/www.knoxtera.com\\\/jak-dziala-atak-ransomware-droga-od-e-maila-do-sparalizowanej-firmy\\\/\",\"name\":\"Anatomia ataku ransomware: 11 dni do katastrofy -\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.knoxtera.com\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.knoxtera.com\\\/jak-dziala-atak-ransomware-droga-od-e-maila-do-sparalizowanej-firmy\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.knoxtera.com\\\/jak-dziala-atak-ransomware-droga-od-e-maila-do-sparalizowanej-firmy\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.knoxtera.com\\\/wp-content\\\/uploads\\\/2026\\\/02\\\/employer-or-recruiter-holding-reading-a-resume-wit-2026-01-05-04-54-14-utc-scaled.jpg\",\"datePublished\":\"2026-06-09T00:00:00+00:00\",\"description\":\"Czy ransomware to nag\u0142y wybuch? Nie, to proces. Zobacz realistyczny scenariusz ataku krok po kroku i dowiedz si\u0119, jak SOC mo\u017ce go zatrzyma\u0107.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.knoxtera.com\\\/jak-dziala-atak-ransomware-droga-od-e-maila-do-sparalizowanej-firmy\\\/#breadcrumb\"},\"inLanguage\":\"en-GB\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.knoxtera.com\\\/jak-dziala-atak-ransomware-droga-od-e-maila-do-sparalizowanej-firmy\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-GB\",\"@id\":\"https:\\\/\\\/www.knoxtera.com\\\/jak-dziala-atak-ransomware-droga-od-e-maila-do-sparalizowanej-firmy\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.knoxtera.com\\\/wp-content\\\/uploads\\\/2026\\\/02\\\/employer-or-recruiter-holding-reading-a-resume-wit-2026-01-05-04-54-14-utc-scaled.jpg\",\"contentUrl\":\"https:\\\/\\\/www.knoxtera.com\\\/wp-content\\\/uploads\\\/2026\\\/02\\\/employer-or-recruiter-holding-reading-a-resume-wit-2026-01-05-04-54-14-utc-scaled.jpg\",\"width\":2560,\"height\":1580,\"caption\":\"Employer or recruiter holding reading a resume with talking during about his profile of candidate, employer in suit is conducting a job interview, manager resource employment and recruitment concept.\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.knoxtera.com\\\/jak-dziala-atak-ransomware-droga-od-e-maila-do-sparalizowanej-firmy\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Strona g\u0142\u00f3wna\",\"item\":\"https:\\\/\\\/www.knoxtera.com\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Jak dzia\u0142a atak\u00a0ransomware\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.knoxtera.com\\\/#website\",\"url\":\"https:\\\/\\\/www.knoxtera.com\\\/\",\"name\":\"Strong security Smooth operations\",\"description\":\"Strong security Smooth operations\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.knoxtera.com\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.knoxtera.com\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-GB\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.knoxtera.com\\\/#organization\",\"name\":\"Strong security Smooth operations\",\"url\":\"https:\\\/\\\/www.knoxtera.com\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-GB\",\"@id\":\"https:\\\/\\\/www.knoxtera.com\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.knoxtera.com\\\/wp-content\\\/uploads\\\/2026\\\/02\\\/konxtera_logo_www.png\",\"contentUrl\":\"https:\\\/\\\/www.knoxtera.com\\\/wp-content\\\/uploads\\\/2026\\\/02\\\/konxtera_logo_www.png\",\"width\":83,\"height\":110,\"caption\":\"Strong security Smooth operations\"},\"image\":{\"@id\":\"https:\\\/\\\/www.knoxtera.com\\\/#\\\/schema\\\/logo\\\/image\\\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.knoxtera.com\\\/#\\\/schema\\\/person\\\/93bcfdec5e7047cb9e4d2dadf1c90910\",\"name\":\"Karolina Ole\u015bko\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-GB\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/3335c15be5cfd6bb97c1ab7e7378cedaa34a132fc51f0b5221ec9e2f536301f2?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/3335c15be5cfd6bb97c1ab7e7378cedaa34a132fc51f0b5221ec9e2f536301f2?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/3335c15be5cfd6bb97c1ab7e7378cedaa34a132fc51f0b5221ec9e2f536301f2?s=96&d=mm&r=g\",\"caption\":\"Karolina Ole\u015bko\"},\"url\":\"https:\\\/\\\/www.knoxtera.com\\\/en\\\/author\\\/karolina\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Anatomia ataku ransomware: 11 dni do katastrofy -","description":"Czy ransomware to nag\u0142y wybuch? Nie, to proces. Zobacz realistyczny scenariusz ataku krok po kroku i dowiedz si\u0119, jak SOC mo\u017ce go zatrzyma\u0107.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.knoxtera.com\/en\/jak-dziala-atak-ransomware-droga-od-e-maila-do-sparalizowanej-firmy\/","og_locale":"en_GB","og_type":"article","og_title":"Jak dzia\u0142a atak\u00a0ransomware","og_description":"Czy ransomware to nag\u0142y wybuch? Nie, to proces. Zobacz realistyczny scenariusz ataku krok po kroku i dowiedz si\u0119, jak SOC mo\u017ce go zatrzyma\u0107.","og_url":"https:\/\/www.knoxtera.com\/en\/jak-dziala-atak-ransomware-droga-od-e-maila-do-sparalizowanej-firmy\/","og_site_name":"Strong security Smooth operations","article_published_time":"2026-06-09T00:00:00+00:00","og_image":[{"width":2560,"height":1580,"url":"https:\/\/www.knoxtera.com\/wp-content\/uploads\/2026\/02\/employer-or-recruiter-holding-reading-a-resume-wit-2026-01-05-04-54-14-utc-scaled.jpg","type":"image\/jpeg"}],"author":"Karolina Ole\u015bko","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Karolina Ole\u015bko","Estimated reading time":"5 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.knoxtera.com\/jak-dziala-atak-ransomware-droga-od-e-maila-do-sparalizowanej-firmy\/#article","isPartOf":{"@id":"https:\/\/www.knoxtera.com\/jak-dziala-atak-ransomware-droga-od-e-maila-do-sparalizowanej-firmy\/"},"author":{"name":"Karolina Ole\u015bko","@id":"https:\/\/www.knoxtera.com\/#\/schema\/person\/93bcfdec5e7047cb9e4d2dadf1c90910"},"headline":"Jak dzia\u0142a atak\u00a0ransomware","datePublished":"2026-06-09T00:00:00+00:00","mainEntityOfPage":{"@id":"https:\/\/www.knoxtera.com\/jak-dziala-atak-ransomware-droga-od-e-maila-do-sparalizowanej-firmy\/"},"wordCount":899,"publisher":{"@id":"https:\/\/www.knoxtera.com\/#organization"},"image":{"@id":"https:\/\/www.knoxtera.com\/jak-dziala-atak-ransomware-droga-od-e-maila-do-sparalizowanej-firmy\/#primaryimage"},"thumbnailUrl":"https:\/\/www.knoxtera.com\/wp-content\/uploads\/2026\/02\/employer-or-recruiter-holding-reading-a-resume-wit-2026-01-05-04-54-14-utc-scaled.jpg","articleSection":["Uncategorized"],"inLanguage":"en-GB"},{"@type":"WebPage","@id":"https:\/\/www.knoxtera.com\/jak-dziala-atak-ransomware-droga-od-e-maila-do-sparalizowanej-firmy\/","url":"https:\/\/www.knoxtera.com\/jak-dziala-atak-ransomware-droga-od-e-maila-do-sparalizowanej-firmy\/","name":"Anatomia ataku ransomware: 11 dni do katastrofy -","isPartOf":{"@id":"https:\/\/www.knoxtera.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.knoxtera.com\/jak-dziala-atak-ransomware-droga-od-e-maila-do-sparalizowanej-firmy\/#primaryimage"},"image":{"@id":"https:\/\/www.knoxtera.com\/jak-dziala-atak-ransomware-droga-od-e-maila-do-sparalizowanej-firmy\/#primaryimage"},"thumbnailUrl":"https:\/\/www.knoxtera.com\/wp-content\/uploads\/2026\/02\/employer-or-recruiter-holding-reading-a-resume-wit-2026-01-05-04-54-14-utc-scaled.jpg","datePublished":"2026-06-09T00:00:00+00:00","description":"Czy ransomware to nag\u0142y wybuch? Nie, to proces. Zobacz realistyczny scenariusz ataku krok po kroku i dowiedz si\u0119, jak SOC mo\u017ce go zatrzyma\u0107.","breadcrumb":{"@id":"https:\/\/www.knoxtera.com\/jak-dziala-atak-ransomware-droga-od-e-maila-do-sparalizowanej-firmy\/#breadcrumb"},"inLanguage":"en-GB","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.knoxtera.com\/jak-dziala-atak-ransomware-droga-od-e-maila-do-sparalizowanej-firmy\/"]}]},{"@type":"ImageObject","inLanguage":"en-GB","@id":"https:\/\/www.knoxtera.com\/jak-dziala-atak-ransomware-droga-od-e-maila-do-sparalizowanej-firmy\/#primaryimage","url":"https:\/\/www.knoxtera.com\/wp-content\/uploads\/2026\/02\/employer-or-recruiter-holding-reading-a-resume-wit-2026-01-05-04-54-14-utc-scaled.jpg","contentUrl":"https:\/\/www.knoxtera.com\/wp-content\/uploads\/2026\/02\/employer-or-recruiter-holding-reading-a-resume-wit-2026-01-05-04-54-14-utc-scaled.jpg","width":2560,"height":1580,"caption":"Employer or recruiter holding reading a resume with talking during about his profile of candidate, employer in suit is conducting a job interview, manager resource employment and recruitment concept."},{"@type":"BreadcrumbList","@id":"https:\/\/www.knoxtera.com\/jak-dziala-atak-ransomware-droga-od-e-maila-do-sparalizowanej-firmy\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Strona g\u0142\u00f3wna","item":"https:\/\/www.knoxtera.com\/"},{"@type":"ListItem","position":2,"name":"Jak dzia\u0142a atak\u00a0ransomware"}]},{"@type":"WebSite","@id":"https:\/\/www.knoxtera.com\/#website","url":"https:\/\/www.knoxtera.com\/","name":"Strong security Smooth operations","description":"Strong security Smooth operations","publisher":{"@id":"https:\/\/www.knoxtera.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.knoxtera.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-GB"},{"@type":"Organization","@id":"https:\/\/www.knoxtera.com\/#organization","name":"Strong security Smooth operations","url":"https:\/\/www.knoxtera.com\/","logo":{"@type":"ImageObject","inLanguage":"en-GB","@id":"https:\/\/www.knoxtera.com\/#\/schema\/logo\/image\/","url":"https:\/\/www.knoxtera.com\/wp-content\/uploads\/2026\/02\/konxtera_logo_www.png","contentUrl":"https:\/\/www.knoxtera.com\/wp-content\/uploads\/2026\/02\/konxtera_logo_www.png","width":83,"height":110,"caption":"Strong security Smooth operations"},"image":{"@id":"https:\/\/www.knoxtera.com\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/www.knoxtera.com\/#\/schema\/person\/93bcfdec5e7047cb9e4d2dadf1c90910","name":"Karolina Ole\u015bko","image":{"@type":"ImageObject","inLanguage":"en-GB","@id":"https:\/\/secure.gravatar.com\/avatar\/3335c15be5cfd6bb97c1ab7e7378cedaa34a132fc51f0b5221ec9e2f536301f2?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/3335c15be5cfd6bb97c1ab7e7378cedaa34a132fc51f0b5221ec9e2f536301f2?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/3335c15be5cfd6bb97c1ab7e7378cedaa34a132fc51f0b5221ec9e2f536301f2?s=96&d=mm&r=g","caption":"Karolina Ole\u015bko"},"url":"https:\/\/www.knoxtera.com\/en\/author\/karolina\/"}]}},"_links":{"self":[{"href":"https:\/\/www.knoxtera.com\/en\/wp-json\/wp\/v2\/posts\/1562","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.knoxtera.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.knoxtera.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.knoxtera.com\/en\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/www.knoxtera.com\/en\/wp-json\/wp\/v2\/comments?post=1562"}],"version-history":[{"count":21,"href":"https:\/\/www.knoxtera.com\/en\/wp-json\/wp\/v2\/posts\/1562\/revisions"}],"predecessor-version":[{"id":2026,"href":"https:\/\/www.knoxtera.com\/en\/wp-json\/wp\/v2\/posts\/1562\/revisions\/2026"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.knoxtera.com\/en\/wp-json\/wp\/v2\/media\/234"}],"wp:attachment":[{"href":"https:\/\/www.knoxtera.com\/en\/wp-json\/wp\/v2\/media?parent=1562"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.knoxtera.com\/en\/wp-json\/wp\/v2\/categories?post=1562"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.knoxtera.com\/en\/wp-json\/wp\/v2\/tags?post=1562"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}