The concept is relatively simple; criminals send a bogus e-mail to an employee with an enclosed attachment. The employee opens it up, and this encrypts the data on the system. The victim is then asked to pay a ransom to receive the decryption key.  https://www.scmagazineuk.com/ransomware-could-dentists-and-gps-be-the-next-victims/article/637938/