How hackers use phishing emails in ransomware attacks