Ransomware GoodWill Detected in India, Makes Victims Donate to Fake Causes


Ransomware GoodWill Detected in India

Without the decryption key, the GoodWill ransomware worm encrypts documents, images, movies, databases, and crucial files, rendering them unusable.

A new ransomware has been discovered in India that requires victims to provide new clothes to the destitute, feed children at branded pizza restaurants, and provide financial assistance to anyone who requires immediate medical attention but cannot afford it.
The Goodwill ransomware, according to the organisation, might cause a temporary and possibly permanent loss of company data, as well as a probable closure of operations and income loss.

“CloudSEK researchers discovered the GoodWill malware in March 2022.
The operators of the threat organisation, as the name implies, are reportedly motivated by social justice rather than conventional financial gain “In a report, stated.

The GoodWill ransomware worm encrypts documents, images, movies, databases, and other vital assets and renders them inaccessible without the decryption key once it has been infected.

“In exchange for the decryption key, the actors suggest that victims perform three socially motivated activities: donate new clothes to the homeless, record the action, and post it on social media; take five less fortunate children to Domino’s Pizza Hut or KFC for a treat, take pictures and videos, and post them on social media; and provide financial assistance to anyone who requires urgent medical attention but cannot afford it, at a nearby hospital, record audio, and share it with others.”

After completing all three acts, the ransomware requests that victims post a note on social media (Facebook or Instagram) explaining “how you turned yourself into a good human being by becoming a victim of a ransomware called GoodWill.”
The ransomware operators verify the victim’s media files and social media posts after they complete all three tasks.

According to the article, the actor will then distribute the entire decryption kit, which includes the main decryption tool, a password file, and a video lesson on how to retrieve all crucial files.

The email address provided by the ransomware gang was traced back to an India-based IT security solutions & services company that provides end-to-end managed security services, according to the study.

0 0 votes
Article Rating
Notify of

Inline Feedbacks
View all comments

Latest news

LG Ultra PC 14-Inch, 16-Inch Laptops With AMD Ryzen 5000 Series Processors Launched

The laptops of the LG Ultra PC series include anti-glare IPS panels with minimal bezels. Last week, LG introduced 14-inch...

Samsung Galaxy A23 5G With 6.6-Inch Infinity-V Display, 5,000mAh Battery Launched

Table of ContentsSamsung Galaxy A23 5G price, availability (expected)Samsung Galaxy A23 5G specifications Samsung has not yet revealed the Galaxy...

LG Ultra Tab With 10.35-Inch Display, Snapdragon 680 SoC Launched

Table of ContentsLG Ultra Tab priceLG Ultra Tab specifications The 7,040mAh battery in the LG Ultra Tab supports 25W rapid...

OnePlus 10T Glacier Mat Case With Sustainable Circulation Cooling, Bumper Case Sandstone Launched In India

Table of ContentsOnePlus 10T Glacier Mat Case, Bumper Case Sandstone, Tempered Glass price in India A tempered glass for the...

Latest Updates

Must read

WhatsApp improves Payments, adds new voice calling features for iOS users: says report

WhatsApp's latest iPhone beta release suggests that the messaging...

Uninstall These 17 Malicious Android Apps If You Have Them On Your Phone

A total of 17 Android apps, which were recently...

You might also likeRELATED
Recommended to you

Would love your thoughts, please comment.x