

Data is a company’s most valuable asset. So, doing everything in your power to protect that asset is a given. But what if the threat you’re guarding your data against is known to cripple operations, tarnish reputations, and drain finances? And even worse, what if that threat is only getting more dangerous, thanks to a little thing called artificial intelligence (AI)?
Unfortunately, for many businesses, there’s nothing “what if” about this scenario. As many as 72% of businesses worldwide have experienced a ransomware attack at some point and know just how devastating the aftermath can be.
That’s why we tapped two cybersecurity experts to share their insights on ransomware, its evolution, and how businesses can protect themselves. Read on to hear what Tom Vazdar, the chair of the Enterprise Cybersecurity Master’s program at the Open Institute of Technology (OPIT), and Venicia Solomons, a seasoned cybersecurity architect, have to say on this topic in their “Cyber Threat Landscape 2024: Navigating New Risks” master class.
Ransomware: The Basics
Ransomware is nothing new. However, there are always new business owners who (luckily) haven’t encountered it yet. So, let’s cover the basics first.
Ransomware is a natural product of phishing, a human-centric cyber threat that relies on social engineering to deceive individuals into providing sensitive information or downloading malicious attachments. The latter is what ultimately triggers a ransomware infection. Tom describes the process like this:
You click on a malicious link.
Your device downloads the malware.
Your system is now infected, and somebody else is essentially in charge.
They encrypt your data and demand you pay ransom for the encryption key to get it back.
As mentioned, dealing with ransomware attacks and cyber criminals has become a daily reality for companies worldwide. What certainly doesn’t help companies is the fact that ransomware is now also offered as a service.
Ransomware as a Service
Just a few short years ago, cybercriminals needed sophisticated technical skills and tools to develop and deploy ransomware. Now, all they need is access to the dark web.
As Tom explains it, numerous cyber criminals on the dark web offer ransomware as a service, a malicious adaptation of the software as a service (SaaS) business model. So, you essentially pay them to deploy their ransomware on your behalf.
The most famous, or should we say infamous, among these threats is the LockBit model, which has wreaked havoc on thousands of companies worldwide. The issue is that LockBit ransomware attacks vary in tactics, techniques, and procedures. In other words, an organization must be prepared for virtually anything.
How Has AI Affected Ransomware?
Ransomware is dangerous on its own. But throw artificial intelligence into the mix, and you’ve got a massive threat on your hands.
AI has undoubtedly revolutionized the cybersecurity industry, for better or for worse. The “worse” part is that AI is making cyber threats smarter. Unfortunately, for organizations, this particularly applies to ransomware. According to a 2024 report by the U.K.’s top intelligence agency, ransomware stands to gain the most from AI.
How so?
Well, AI has the potential to create malware that circumvents current cybersecurity detection measures. After all, AI is trained using data. Give it malware data to analyze, and it will learn how to evade detection by traditional cybersecurity tools.
AI will also likely generate a surge of new cybercriminals as the barrier to entering into cybercrime decreases with AI-powered tools.
Of course, the more capable and experienced attackers will also benefit from AI. They will use it to identify system vulnerabilities, bypass security defenses, and craft more precise social engineering attacks.
How to Prevent Ransomware Attacks
Given how quickly ransomware is evolving, preventing attacks requires a multi-faceted approach that combines technology, education, and proactive measures. Tom and Venicia break down this approach.
1. Keep Your Systems Updated
When it comes to anything cybersecurity-related, this is the first crucial step. Keep all your systems and programs updated and patched if you want to stand any chance of protecting against known vulnerabilities.
Tom says that there’s a new vulnerability “basically each week,” so having a process in place to update regularly and patch systems is essential.
Venicia adds that something as simple as a basic software update can go a long way toward protecting your data from ransomware. This update will limit its ability to spread through your network, thus reducing the impact of the attack.
2. Invest in Quality Training
Having the most advanced protection systems in place will do you no good if you don’t have well-trained employees.
These employees must learn to recognize potential cyberattacks that could introduce malware into your organization’s system (e.g., phishing emails). Of course, the next step is to respond effectively to the attack. Though each organization has its own set of rules in place, the proper response typically involves disconnecting from the network and contacting IT support.
3. Implement Defensive Systems
Humans are undoubtedly the first line of defense against cyber threats. However, they can’t do it alone. That’s why implementing advanced Endpoint Detection and Response (EDR) solutions is crucial. Tom explains that these systems will help you identify and, more importantly, mitigate a threat on time.
However, he also adds that you must restrict user permissions within the system. This way, even if a single component is compromised, the ransomware won’t take down the entire network.
4. Implement Network Segmentation
As you can see, a huge part of mitigating ransomware attacks is ensuring they don’t affect the entire network. That’s where network segmentation can also help.
As Tom explains, with network segmentation, the malicious actor in control of your network won’t be able to do “lateral movements.” In other words, even if they do manage to penetrate your network, they won’t be able to spread within it.
So, network segmentation is a critical part of the multi-layer approach every organization should adopt when it comes to cybersecurity.
5. Collaborate With Others
Remember – you aren’t the only one experiencing cyberattacks. In Venicia’s words, “ransomware has a global impact.”
That’s why organizations in the private sector are constantly encouraged to “talk to each other,” as Tom puts it. Of course, there’s always the issue of confidentiality, but Tom explains that this, too, can be resolved with a “closed circle of trust.”
Also, organizations in the private and public sectors are encouraged to share relevant information with institutions such as the Financial Services Information Sharing and Analysis Center (FS-ISAC).
In Europe, there’s also something called The No More Ransom Project. This Europol initiative has existed for years, hosting decryption keys for different types of ransomware. It has helped numerous individuals and organizations decrypt their systems and avoid paying the ransom.
Of course, this won’t always be possible, as the attackers typically keep changing the encryption keys. However, anything that helps organizations avoid paying the ransom is worth trying.
Why?
Because paying the ransom often won’t solve any problems.
As Tom explains it, you’re dealing with criminals, after all. So, they will often double the ransom after you pay the initial amount, having realized that you have the money. Or, they’ll simply take the money and run without giving you the decryption keys.
So, ongoing threat intelligence sharing should be among the top priorities for an organization, as it allows them to evade the last-resort scenario of paying the ransom.
6. Invest in Backups and Disaster Recovery
According to Venicia, backups and disaster recovery have a massive role to play in combating ransomware. She says that the primary reason organizations choose to pay the ransom is because they don’t have any backups in place. In other words, they don’t have an alternative way to get their data back.
That’s precisely what Tom has experienced working with many small and medium-sized businesses.
He says that these businesses usually don’t have disaster recovery procedures and data backups because they find them to be too expensive. Other times, they’ll say they didn’t have the time to deal with these measures. But whatever the excuse may be, one thing’s for sure – having no backups leaves you vulnerable to losing your data permanently in a ransomware attack.
According to Tom and Venicia, here’s what an ideal proactive approach to cybersecurity would look like.
Step No. 1 – Have regularly scheduled backups and ensure they’re stored in different environments, including offline ones. Tom suggests the 3-2-1 data backup strategy – have three copies of your data on two different mediums (e.g., hard drives and DVDs) with one copy off-site (a different physical location).
Step No. 2 – Regularly test your backups to see whether they’re able to handle different scenarios.
Step No. 3 – Implement a disaster recovery plan that outlines the steps for different types of incidents. Of course, these incidents shouldn’t only cover ransomware. Earthquakes, floods, and even meteor strikes should be considered in your plan. The last part might seem silly to you. In fact, it also sounded silly to Tom and his colleagues. That is, at least, until a meteor struck Russia in 2013. So, you never know!
The Importance of Cybersecurity Specialists
Most of the strategies for combating ransomware require one thing – a skilled cybersecurity specialist to execute them. This is also what most companies lack, which is why they easily fall victim to cyberattacks.
That’s why programs like the Enterprise Cybersecurity Master’s program at OPIT are essential for the future of cybersecurity. This program helps train the next generation of cybersecurity professionals to defend organizations against the so-called “Ransomware Armageddon” and any other cyber threat that might emerge.
Related posts

During the Open Institute of Technology’s (OPIT) 2025 graduation day, the OPIT team interviewed graduating student Irene about her experience with the MSc in Applied Data Science and AI. The interview focused on how Irene juggled working full-time with her study commitments and the value of the final Capstone project, which is part of all OPIT’s master’s programs.
Irene, a senior developer at ReActive, said she chose to study at OPIT to update her skills for the current and future job market.
OPIT’s MSc in Applied Data Science and AI
In her interview, Irene said she appreciated how OPIT’s course did not focus purely on the hard mathematics behind technologies such as AI and cloud computing, but also on how these technologies can be applied to real business challenges.
She said she appreciated how the course gave her the skills to explain to stakeholders with limited technical knowledge how technology can be leveraged to solve business problems, but it also equipped her to engage with technical teams using their language and jargon. These skills help graduates bridge the gap between management and technology to drive innovation and transformation.
Irene chose to continue working full-time while studying and appreciated how her course advisor helped her plan her study workload around her work commitments “down to the minute” so that she never missed a deadline or was overcome by excessive stress.
She said she would recommend the program to people at any stage in their career who want to adapt to the current job market. She also praised the international nature of the program, in terms of both the faculty and the cohort, as working beyond borders promises to be another major business trend in the coming years.
Capstone Project
Irene described the most fulfilling part of the program as the final Capstone project, which allowed her to apply what she had learned to a real-life challenge.
The Capstone Project and Dissertation, also called the MSc Thesis, is a significant project aimed at consolidating skills acquired during the program through a long-term research project.
Students, with the help of an OPIT supervisor, develop and realize a project proposal as part of the final term of their master’s journey, investigating methodological and practical aspects in program domains. Internships with industrial partners to deliver the project are encouraged and facilitated by OPIT’s staff.
The Capstone project allows students to demonstrate their mastery of their field and the skills they’ve learned when talking to employers as part of the hiring process.
Capstone Project: AI Meets Art
Irene’s Capstone project, “Call Me VasarAI: An AI-Powered Framework for Artwork Recognition and Storytelling,” focused on using AI to bridge the gap between art and artificial intelligence over time, enhancing meaning through contextualization. She developed an AI-powered platform that allows users to upload a work of art and discover the style (e.g. Expressionism), the name of the artist, and a description of the artwork within an art historical context.
Irene commented on how her supervisor helped her fine-tune her ideas into a stronger project and offered continuous guidance throughout the process with weekly progress updates. After defending her thesis in January, she noted how the examiners did not just assess her work but guided her on what could be next.
Other Example Capstone Projects
Irene’s success is just one example of a completed OPIT Capstone project. Below are further examples of both successful projects and projects currently underway.
Elina delivered her Capstone project on predictive modeling of natural disasters using data science and machine learning techniques to analyze global trends in natural disasters and their relationships with climate change-related and socio-economic factors.
According to Elina: “This hands-on experience has reinforced my theoretical and practical abilities in data science and AI. I appreciate the versatility of these skills, which are valuable across many domains. This project has been challenging yet rewarding, showcasing the real-world impact of my academic learning and the interdisciplinary nature of data science and AI.”
For his Capstone project, Musa worked on finding the optimal pipeline to fine-tune a language learning model (LLM) based on the specific language and model, considering EU laws on technological topics such as GDPR, DSA, DME, and the AI Act, which are translated into several languages.
Musa stated: “This Capstone project topic aligns perfectly with my initial interests when applying to OPIT. I am deeply committed to developing a pipeline in the field of EU law, an area that has not been extensively explored yet.”
Tamas worked with industry partner Solergy on his Capstone project, working with generative AI to supercharge lead generation, boost SEO performance, and deliver data-driven marketing insights in the realm of renewable energy.
OPIT’s Master’s Courses
All of OPIT’s master’s courses include a final Capstone project to be completed over one 13-week term in the 90 ECTS program and over two terms in the 120 ECTS program.
The MSc in Digital Business and Innovation is designed for professionals who want to drive digital innovation in both established companies and new digital-native contexts. It covers digital business foundations and the applications of new technologies in business contexts. It emphasizes the use of AI to drive innovation and covers digital entrepreneurship, digital product management, and growth hacking.
The MSc in Responsible Artificial Intelligence combines technical expertise with a focus on the ethical implications of modern AI. It focuses on real-world applications in areas like natural language processing and industry automation, with a focus on sustainable AI systems and environmental impact.
The MSc in Enterprise Cybersecurity prepares students to fulfill the market need for versatile cybersecurity solutions, emphasizing hands-on experience and soft-skills development.
The MSc in Applied Data Science and AI focuses on the intersection between management and technology. It covers the underlying fundamentals, methodologies and tools needed to solve real-life business problems that can be approached using data science and AI.

In May 2025, Greta Maiocchi, Head of Marketing and Administration at the Open Institute of Technology (OPIT), went online with Stefania Tabi, OPIT Career Services Counselor, to discuss how OPIT helps students translate their studies into a career.
You can access OPIT Career Services throughout your course of study to help with making the transition from student to professional. Stefania specifically discussed what companies and businesses are looking for and how OPIT Career Services can help you stand out and find a desirable career with your degree.
What Companies Want
OPIT degrees are tailored to a wide range of individuals, with bachelor’s degrees for those looking to establish a career and master’s degrees for experienced professionals hoping to elevate their skills to meet the current market demand.
OPIT’s degrees establish the foundation of the key technological skills that are set to reshape industries shortly, in particular artificial intelligence (AI), big data, cloud computing, and cybersecurity.
Stefania shared how companies recruiting tech talent are looking for three types of skills:
- Builders – These are the superstars of the industry today, capable of developing the technologies that will transform the industry. These roles include AI engineers, cloud architects, and web developers.
- Protectors – Cybercrime is expected to cost the world $10.5 trillion by the end of 2025, which means companies place a high value on cybersecurity professionals capable of protecting their investment, data, and intellectual property (IP).
- Decoders – Industry is producing more data than ever before, with global data storage projected to exceed 200 zettabytes this year. Businesses seek professionals who can extract value from that data, such as data scientists and data strategists.
Growing Demand
Stefania also shared statistics about the growing demand for these roles. According to the World Economic Forum, there will be a 30-35% greater demand for roles such as data analysts and scientists, big data specialists, business intelligence analysts, data engineers, and database and network professionals by 2027.
The U.S. Bureau of Labor Statistics, meanwhile, predicts that by 2032, the demand for information security will increase by 33.8%, by 21.5% for software developers, by 10.4% for computer network architects, and by 9.9% for computer system analysts. Finally, the McKinsey Global Institute predicts a similar 15-25% increase in demand for technology professionals in the business services sector.
How Career Support Makes a Difference
Next, Stefania explained that while learning essential skills is vital to accessing this growing job market, high demand does not guarantee entry. Today, professionals looking for jobs in the technology field must stand out from the hundreds of applicants for each position with high-level skills.
Applicants demonstrate technical expertise in relevant fields by completing OPIT’s courses. They also need to prove that they can deliver results, demonstrating not just what they know but how they have applied what they know to transform or benefit a business. Professionals also need adaptability, adaptive problem-solving skills, and a commitment to continuous learning. OPIT’s final Capstone projects can be an excellent way to demonstrate the value of newly acquired skills.
Each OPIT program prepares students for future careers by providing dedicated support and academic guidance at every step.
What Kind of Support Does Career Services Offer?
Career Services is specifically focused on assisting students in making the transition to the job market, and you can make an appointment with them at any time during your studies. Stefania gave some specific examples of how Career Services can support students on their journey into the career market.
Stefania said she begins by talking with students and discussing what they truly value to help them discover the type of career that aligns with their strengths. With students who are still undecided on how to start to build their careers, she helps them craft a tailored job and internship search plan.
Stefania has also worked with students who want to stand out during the job application process among the hundreds of applicants. This includes hands-on help in reframing resumes, tailoring LinkedIn profiles, and developing cover letters that tell a unique story.
Finally, Stefania has assisted students in preparing for interviews, helping them research the company, develop intelligent questions about the role to ask the interviewer and engage in mock interviews with an experienced recruiter.
Connecting With Employers
OPIT Career Services also offers students exposure to a wide range of employers and the opportunity to build relationships through masterclasses, career talks, and industry roundtables. The office also helps students build career-ready skills through interactive, hands-on workshops and hosts virtual career fairs with top recruiters.
Career Services also plays an integral role in connecting students with companies for their Capstone project in the final phase of their master’s program. So far, students have worked with companies including Sintica, Cosmica, Cisco, PayPal, Morgan Stanley, AWS, Dylog, and Accenture. Projects have included developing predictive modeling for natural disasters and fine-tuning AI to answer questions about EU tech laws in multiple languages.
What Kinds of Jobs Have OPIT Graduates Secured?
Stefania capped off her talk by sharing some of the positions that OPIT graduates have now fulfilled, including:
- Chief Information Security Officer at MOMO for MTN mobile services in Nigeria
- Data Analyst at ISX Financial in Cyprus
- Head of Sustainability Office at Banca Popolare di Sondrio in Italy
- Data Analyst at Numisma Group in Cyprus
- Senior Software Engineer at Neaform in Italy
OPIT Courses
OPIT offers both foundational bachelor’s degrees and advanced master’s courses, which are both accessible with any bachelor’s degree (it does not have to be in the field of computer science).
Choose between a BSc in Modern Computer Science for a strong technical base or a BSc in Digital Business to focus on applications.
Meanwhile, courses that involve a final Capstone project include an MSc in Applied Data Science and AI, Digital Business and Innovation, Enterprise Cybersecurity, and Responsible Artificial Intelligence.
Have questions?
Visit our FAQ page or get in touch with us!
Write us at +39 335 576 0263
Get in touch at hello@opit.com
Talk to one of our Study Advisors
We are international
We can speak in: