What is a workday like for someone working on a ransomware attack? What does a group, like the ICC (FBI) do to research the attack? Is all of the work done on a computer?

A typical day for someone working to counter a ransomware attack involves closely monitoring networks for any signs of intrusion or suspicious activity, analyzing potential threats, creating and implementing security measures, responding to incidents, and collaborating with different teams to mitigate the impact of the attack. They may use a variety of techniques and tools such as intrusion detection systems, firewalls, antivirus software, and malware analysis tools to handle ransomware threats. Additionally, they might conduct regular security audits, educate employees on best practices to prevent attacks, and work on developing incident response plans to ensure a swift and effective response in case of an attack.