TUID Ransomware Joins the Ever Growing STOP/Djvu Ransomware Family.
Ransomware has become perhaps the most prominent malware threat victimizing PC users worldwide over the past several years. The rise of ransomware has also given birth to several different ransomware families. Among the different groups of ransomware, standing prominently is the STOP/Djvu Ransomware family. Over time, the gang has released hundreds of new variants, becoming one of the world’s most notable ransomware groups.
TUID Ransomware happens to be another addition to the family. The name TUID comes from the .TUID extension that is added to the encrypted files. The ransomware behaves like other infections from the STOP/Djvu group, and it runs the encryption algorithm making a ransom demand.
Before launching the encryption, TUID Ransomware scans the compromised system for the encryptable files. It then encrypts the files that may contain valuable information, including databases, spreadsheets, archives, pictures, and videos. Additionally, the ransomware drops a ransom note that contains the hackers’ ransom demands.
The Ransom Demand Associated with TUID Ransomware
TUID Ransomware’s operators say they will issue a decryption key for $980. They also offer a 50% discount if victims reach out to them within 72 hours after encryption. The ransom note instructs users to contact the criminals via the given email. If contacted, TUID Ransomware’s operators also offer to decrypt one file for free to display they can unlock all the affected files.
How Do I Deal with a TUID Ransomware Attack?
Although paying the ransom might seem the fastest way to solve this problem, we strongly advise the infected users not to engage. Instead, they should employ a reputable malware remediation program to scan for and remove TUID Ransomware. To prevent data loss in the case of another ransomware attack, please consider backing up your data on an external hard drive or virtual cloud storage.
