Time-to-Ransom, or TTR, is the time between initial compromise of the first system and the execution of ransomware. This can be immediate, or much longer, even up to months, depending on what the attackers’ goal is. For example, an exploit may be found in a network, and the ransomware gang may sell access to that exploit, and not take any action itself.
« Back to Glossary Index