Expert Insight On Fake Ransomware Decryptor Capable of Double-Encrypting Files of Desperate Victims

By   ISBuzz Team
Writer , Information Security Buzz | Jun 09, 2020 03:40 am PST

Recently, people who are desperate with the promise of free decryption have been tricked by the spreading fake decryptor for the STOP Djvu Ransomware. What happens is that they are infected with another ransomware worsening their situation instead of having their stolen files back for free.


Notify of
1 Expert Comment
Oldest Most Voted
Inline Feedbacks
View all comments
Paul Bischoff
Paul Bischoff , Privacy Advocate
June 9, 2020 11:41 am

Most of the victims of the fake decryptor are individual users and not enterprises, so there\’s relatively little news about it despite it being so common. Unlike businesses, individual users are less likely to pay hundreds of dollars for a legitimate decryptor, so they attempt to pirate a cracked version. A \”crack\” is a copy of software that has been modified to remove copy protection that would otherwise ensure the user has paid for it. The cracked version lures ransomware victims in and contains the fake decryptor ransomware, which further encrypts files a second time. Victims are now left with the choice to lose their files, pay two ransoms to cybercriminals, or pay hundreds of dollars for legitimate decryptor software.

Last edited 3 years ago by Paul Bischoff

Recent Posts

Would love your thoughts, please comment.x