A weird, unnerving malware dubbed Azov Ransomware intentionally wipes and destroy your information, however there’s one thing atypical about how this so-called “ransomware” behaves.
The anticipated modus operandi of ransomware is that it renders your recordsdata inaccessible in some capability (e.g. encrypting your recordsdata), however to get better your contents, you may must pony up your hard-earned cash earlier than the cybercriminals relinquish your information.
Azov Ransomware is a little bit of a misnomer; it does not demand ransom from harmless targets. As a substitute, it wipes victims’ information and requests that they contact sure safety researchers and journalists, framing them because the masterminds behind the malware (h/t Bleeping Pc).
The observe issued to victims of Azov Ransomware
A programmer generally known as @hasherezade is without doubt one of the victims of framing with this Azov Ransomware fiasco.
In late October, the programmer took to Twitter to clear their identify. “I’m not in any methods affiliated with Azov (or some other #ransomware). It is a widespread observe amongst cybercriminals to attempt to body safety researchers.”
To whomever it considerations: I’m NOT in any methods affiliated with Azov (or some other #ransomware). It’s a standard observe amongst cyber criminals to attempt to body safety researchers. pic.twitter.com/zvlwWvroaDOctober 30, 2022
Throughout the tweet, you possibly can learn the observe that is issued to Azov Ransomware victims. Funnily sufficient, even Bleeping Pc was framed. As such, the tech journalism outlet needed to clear its identify, too.
“To be clear, BleepingComputer and myself aren’t affiliated with ‘Azov’ ransomware or some other malware,” Editor-in-Chief of Bleeping Pc Lawrence Abrams mentioned in a tweet. “Sadly, folks have already contacted me to obtain assist decrypting recordsdata, together with a sufferer in Ukraine, and we now have no manner of serving to right now.”Â
How do victims get contaminated with Azov Ransomware?
In accordance with Bleeping Pc, this malware continues to be extensively distributed all over the world. Because it seems, folks have gotten their techniques contaminated with Azov Ransomware after pirating software program that masquerades as one other software.
The malware, in response to Test Level safety searcher Jiřà Vinopal, is a brand new “damaging information wiper” that’s designed to overwrite chunks of knowledge in loops of 666 bytes. The quantity 666 is commonly related to the satan, which hints that the menace actor’s intentions are lower than noble.
So as to add salt to harm, not solely can Azov wipe information, however it’s also able to infecting different applications on victims’ techniques.
As of this writing, nobody is aware of why the cybercriminal is focusing on safety researchers and tech journalists, however the most well-liked principle is that this menace actor is nothing greater than a malicious troll.