New encryption ransomware – with no decryption option

There are reports of a new encryption ransomware strain called Somnia being used against Ukrainian targets by Russian hacktivists.

Ukraine says Russian hacktivists use new Somnia ransomware (bleepingcomputer.com)

Somnia does not request the victims to pay a ransom in exchange for a working decryptor, as its operators are more interested in disrupting the target’s operations than generating revenue.

Therefore, this malware should be considered a data wiper rather than a traditional ransomware attack.

Bill Toulas – Bleeping Computer

Have you read the advice above from the UK Government and the National Cyber Security Centre? You need to as the nature of international business and the internet means that this new ransomware is likely to spread outside Ukraine and you could be collateral damage.

At least check that your back-up is encryption ransomware resilient.

Clive Catton MSc (Cyber Security) – by-line and other articles

ransomware 200