Ransomware guide for your staff

Cyber security is something that all businesses need to be concerned about. In the UK, from 2021, over 165 million records were exposed in the UK due to data breaches. This would have a devastating impact on any company, causing huge financial losses and reputational damage.


Unfortunately, a lot of attacks occur due to employee errors. This is because they have not been given the right guidance. With that in mind, we have put together this guide to help you protect yourself from ransomware.


What is ransomware?

Before we delve deeper into ransomware and how to protect yourself, it is imperative to explain what ransomware is.


Ransomware is a form of malicious software that has been created so that access to your computer system is blocked. Once ransomware has infected your network, the hacker will usually get in touch to demand a ransom so that you can access your files again.


There is no guarantee that you are going to regain access to your system by paying the ransom, though, so even if we were to pay the ransom, the files could be lost forever.


What can you do to protect yourself from ransomware?

Now that you have a good understanding of what ransomware is, we’re going to take you through some of the different steps you can follow to protect yourself:


1.   Do not click on any attachments or links from people you don’t know

One of the most important rules when protecting yourself from ransomware is making sure that you do not click on any attachments or links from people you don’t know. If you do not recognise the email address, you should never click on any sort of attachment.


2.   Always double-check if you receive an email from someone you know but you weren’t expecting

You may receive an email from someone you know, encouraging you to open an attachment or click on a link. However, the email may be a bit of a surprise, i.e. something that you were not expecting. If this is the case, don’t click on anything yet!


Make sure you get in touch with the person who sent it to ensure that they meant to. It could be that someone has hacked into their email and sent you ransomware this way.


3.   Always double-check the email address

Hackers are sophisticated these days. They know how to make emails appear as they have come from someone else. They will often copy the structure, logo, font, and other common elements used by establishments such as banks and other well-known organisations, making it appear like the emails are genuine. However, one thing they cannot fake is the email address, so always double-check this.


Be careful, though, as they can put the company’s email address within the email’s subject line to try and trick you, so this is something else to look out for!


4.   Never use your work email address to sign up or register for anything online

Unless you are authorised and the sign-up is work-related, do not use your work email address to sign-up for anything online. You should always use your personal account.


5.   Don’t give out your personal information

If you receive an email, text, or call from someone you don’t know, don’t give any of your personal information. Remember, genuine companies will never ask for your password in full!


If someone calls you and asks for characters two and four from your password, and then claims it does not work and asks for other characters, don’t give them the answer. They could be trying to piece your password together!


6.   Don’t download anything from a site unless you trust it

Do not download media files or software from unknown websites. Only use trusted and verified sites if you are downloading something.


There should be markers of trust, for example, HTTPS in the URL bar instead of HTTP.


So there you have it: an insight into ransomware and how you can make sure that you protect yourself. Unfortunately, insider attacks represent a huge portion of data breaches today, and they often happen because of a lack of staff education on cyber security matters. Hopefully, this guide will help you to feel more confident about protecting yourself online. However, if you have any other queries or concerns, please do not hesitate to get in touch. Whenever you’re unsure, ask a senior member of staff.

What an AI Agent Can Do for a UK Small Business

December 2, 2025
AI tools are everywhere at the moment, but for most small businesses the real question is simple: can this actually help us day to day? The answer, increasingly, is yes. AI agents are becoming a practical, affordable way for UK SMBs to lighten workloads, improve responsiveness and strengthen their cyber security without adding to headcount. Here’s what they can realistically take off your plate. Take the admin you never get time for Most small teams lose hours each week to tasks like updating spreadsheets, booking meetings, chasing invoices or sorting inbox clutter. An AI agent can handle these automatically in the background — consistently, accurately and without needing to be chased. It’s not about replacing people; it’s about giving them space to focus on the work that actually moves the business forward. Improve customer response times Customers expect fast answers, even when your team is busy or out on site. AI agents can deal with routine enquiries, provide updates, and pass more complex queries straight to the right person. You stay responsive, your team stays sane, and nothing gets forgotten in the rush. Add another layer of cyber protection Cyber threats are rising across the UK, and many of the attacks we’re seeing at Cranborne start with human error — a missed warning sign, a convincing phishing email, or an unusual login that doesn’t get spotted in time. An AI agent can monitor activity in the background and raise a flag the moment something looks suspicious. It’s not a silver bullet, but it’s an extra pair of eyes when you need it most. Support sales and marketing without extra staff From following up with leads to drafting emails and analysing which campaigns actually worked, AI agents help small businesses stay consistent. They don’t replace your voice or your expertise — they simply keep the wheels turning so opportunities don’t slip through the cracks. Help you make better decisions, faster Instead of digging through systems for data, an AI agent can pull together quick reports, highlight trends and spot issues early. That means business owners get clearer visibility without spending evenings trawling through spreadsheets. The takeaway AI agents aren’t a gimmick. Used well, they become part of the team — handling the repetitive, the routine and the time-consuming. For UK SMBs under pressure to do more with less, they offer a straightforward way to improve efficiency, strengthen security and give your people their time back.

The 2026 IT Priorities UK SMBs Can’t Ignore

December 2, 2025
2026 will be a defining year for UK small and medium businesses. Technology is no longer just a background function – it shapes resilience, productivity, and competitiveness. At Cranborne Tech, we see this first-hand across care providers, financial services, retail, and non-profits. The organisations moving forward are the ones treating IT as a strategic enabler, not a cost centre. 1. Cybersecurity First: A Zero-Trust Reality Cyber threats continue to rise, and insurers now require demonstrable controls. SMBs must embed Zero Trust principles: MFA everywhere, continuous monitoring, dark web monitoring and phishing simulations as part of regular staff training. Security is now the foundation of every digital decision. 2. AI-Driven Productivity AI is now built into everyday tools like Microsoft 365. SMBs can save hours each week through automated reporting, meeting summaries, documentation support, and enhanced customer service workflows. Responsible governance and staff training must sit alongside adoption. 3. Cloud Cost Control Licensing and cloud waste became a major issue in 2024–2025. In 2026, SMBs should focus on rationalising tools, removing unused subscriptions, and right-sizing backup and cloud storage plans. A cleaner, more efficient cloud estate lowers costs and reduces complexity. 4. Modernising Infrastructure Cloud environments are now the default, although hybrid is still operational where needed. SMBs need reliable networks, standardised devices, secure remote access, and infrastructure capable of supporting AI-driven workloads. Modernisation boosts stability and improves user experience. 5. Business Continuity That Works Backups alone aren’t enough. SMBs need recoverability: encrypted cloud backups, offline copies, documented disaster recovery plans, and regular testing. Insurers and partners increasingly expect evidence, not assumptions. 6. Compliance and Governance Maturity Clear policies, documented patching, supplier assurance, and ongoing training form the baseline for regulated sectors. Mature governance builds trust and removes friction during audits or contract renewals. 7. Employee Experience Through IT Smooth onboarding, consistent devices, self-service capability, and proactive support make a measurable difference to productivity. In 2026, IT is a core part of employee experience. 8. Automating Everyday Workflows SMBs can now automate HR approvals, finance tasks, customer service routing, and reporting without enterprise budgets. Small steps create meaningful efficiency gains. Book a free IT audit The businesses that will thrive in 2026 are those treating IT as a growth partner. Cranborne Tech is here to help UK SMBs build resilient, secure, and future-ready digital foundations. If you want to understand how your IT supports your business goals and identify any gaps before they become risks, book a free IT audit . We’ll review your current setup and guide you on the next steps.