The first helpful rule of "Jivex Web": Don't let it spread. Leo yanked the laptop’s Wi-Fi cable and turned off its wireless card. Then he unplugged it from the shared family drive. The ransomware was now trapped, unable to jump to their parents' work computers.

Leo rebooted the laptop normally. The red warnings were gone. Maya opened her history report—every word was there. She burst into happy tears.

Leo was known in his neighborhood as the "Fix-It Friend." If a tablet froze, a phone glitched, or a smart bulb flickered, Leo could usually sort it out. But one afternoon, his younger sister, Maya, ran into his room, her laptop open to a terrifying sight.

For ten agonizing minutes, green text scrolled down the screen. Decrypting file 1 of 1,204... Decrypting file 904 of 1,204...

Leo felt a cold knot in his stomach. He’d heard of ransomware—malicious software that locks your files and demands a ransom. But this was the first time he’d seen it in real life. "Don't pay," he said firmly, remembering a tech safety video. "Paying doesn't guarantee you'll get anything back."

Leo showed Maya a website called NoMoreRansom.org (a real, free resource run by cybersecurity companies and law enforcement). He typed in the description of the pop-up. Within minutes, they found a page on "Jivex Web" – a new strain, but similar to an older one called "CobraLock." And crucially, a free decryption tool had just been updated to fight it.