SIJR Ransomware Joins the STOP/Djvu Ransomware Family
The STOP/Djvu Ransomware strikes again this week as one of the world’s most prominent ransomware groups grows larger with SIJR Ransomware. Like the other members of the STOP/Djvu Ransomware Family, SIJR Ransomware scans a victim’s computer to look for user-generated files. It then targets the files that the hackers believe may contain valuable information, including databases, spreadsheets, archives, pictures, and videos.
It is referred to as SIJR Ransomware based on the .SIJR extension it appends to the infected files. The ransomware operates like its counterparts from the STOP/Djvu group and encrypts files before the hackers responsible for this infection deliver a ransom note with the information about the ransomware and the hackers’ ransom demands.
The Ransom Demand Associated with SIJR Ransomware
SIJR Ransomware’s operators promise a decryption key to unlock the affected files in exchange for $980. However, they offer a 50% discount if victims establish communication within 72 hours after encryption. The ransom note instructs users to contact the criminals via manager@time2mail.ch or supportsys@airmail.cc. SIJR Ransomware’s operators also offer to decrypt one file for free to show they can unlock all the affected files.
How Do I Deal with a SIJR Ransomware Attack?
Although cooperating with hackers seems like an easy way out of the situation, we strongly advise victims not to engage with them. It is better to employ a reputable malware remediation program to scan for and remove SIJR Ransomware. To prevent data loss in the case of another ransomware attack, please consider backing up your data on an external hard drive or virtual cloud storage.
