REvil: arrests made in relation to massive Kaseya ransomware attack

A coordinated law enforcement operation has led to the arrest of 7 hackers allegedly affiliated with the REvil group (also known as Sodinokibi), one of the most prolific cyber gangs in history. REvil, the successor of another notorious group GandCrab, is responsible for some of the biggest attacks on businesses and organizations in recent years, including the massive cyberattack on software…

Delete Irfk ransomware

Irfk ransomware is a generic ransomware infection from the Djvu/STOP ransomware family. It’s the most recent ransomware to be released by this cyber gang, one of the hundreds of mostly identical ransomware. The ransomware encrypts files and adds .irfk to them, which is how you can identify which ransomware you’re dealing with. Unfortunately, you will not be able to open…

Palq ransomware removal

Palq ransomware encrypts files and adds .palq to encrypted files. This file-encrypting malware comes from a notorious family of ransomware known as Djvu/STOP. The cyber gang controlling this ransomware releases new versions at least a couple of times a week, with hundreds of versions already released. Unfortunately, files with the .palq extension will be unopenable, unless you first run them…

How to remove Cool ransomware

Cool ransomware comes from the notorious Djvu/STOP family of file-encrypting malware. It’s a type of malware that essentially takes files hostage and demands money in exchange for a decryptor to recover them. This family has hundreds of ransomware in it, but this particular one can be identified by the .cool extension added to encrypted files. You will not be able…

Cybersecurity news headlines for October 2021

October’s edition of cybersecurity news features three stories that made headlines. In early October, it was revealed that live-streaming platform Twitch has suffered perhaps one of the biggest hacks in recent years when the platform in its entirety got leaked online. The 125GB torrent was posted on a hacking forum and included the payouts for the platform’s biggest streamers. In…

Delete Rivd ransomware

Rivd ransomware is the most recent file-encrypting malware to come from the Djvu/STOP ransomware family. It’s practically identical to the majority of other versions because they’re released by the same people. The cyber gang has released hundreds of ransomware, and they’re all distinguishable by the extensions they add to encrypted files. This version adds .rivd, hence why it’s known as Rivd…

Stop Everalyearsfou.xyz redirects

Everalyearsfou.xyz is a very generic scam website that tries to trick users into agreeing to ads on the desktop. It misuses a legitimate browser feature that allows sites to show users push notifications on their desktops. This is why you will get a browser alert saying “Everalyearsfou.xyz wants to show notifications” when you end up on the site. But instead…

How to delete Rugj ransomware

Rugj ransomware is one of the most recent file-encryption malware to come from the Djvu/STOP malware family. There are many almost identical ransomware threats out there because the gang behind Djvu/STOP keeps releasing new versions essentially on a daily basis. The extension they add to encrypted files helps differentiate between them. This particular ransomware adds .rugj to files it encrypts,…