security - Yuri Samoilov

A New Ransomware Twist in Which Criminals Realize They’re Criminals

July 15, 2024         By: Steven Anderson

Ransomware used to be something of an annoyance, a proposition where someone would hijack your files and, in exchange for some money (often in bitcoin), the hijacker would then return the user’s files. However, some—like myself—had a paranoiac dread in the back of their mind: why would they return the files once they had the money? The ransomware user community seems to have tumbled to that particular inquiry recently, noting that, since they already had the money, why bother offering the unlocking mechanism to recover the files?

It’s a new development known as “Ranscam”, which works like ransomware, until it turns into a scam. Some versions don’t even delete files at all, reports note, but instead suggest that deletion is taking place when it really isn’t.

The development of Ranscam and the ongoing growth of ransomware in general stems from one simple premise: it works. It works well, by many reports, as users are entirely willing to fork over the dough in the hope of getting files back. With such a willing pool of participants, it becomes profitable to engage in ransomware or even Ranscam use.

Naturally, this is leading to many pointing out that the best way to fend off such attacks is to make yourself immune to the consequences. Never pay a ransomware—or a Ranscam—user, but rather, engage in offline backup. When all your files are stored somewhere, as in a computer not connected to the Internet, it becomes next to impossible to hack in any way. It’s a principle called “air gap” security, and for the most part, it’s unbeatable. Sure, it’s technically possible, but first you have to be in the same room as the system in question and able to sneak in a doctored smartphone or the like that can connect to the system. It’s like trying to break into a room with no doors and windows.

So whether it’s ransomware or just its imitator Ranscam, remember: don’t pay. You may get your files back, but then, you may not, and in the end, you’ll do better just to keep your files elsewhere and safe, away from the potential access of unauthorized users.