What is a Rumba Ransomware?

January 28, 2019 | By Natasha Devotta
1 Star2 Stars3 Stars4 Stars5 Stars (5 votes, 3.80 / 5
Loading...

Malware Type: Ransomware

Family: STOP

First Identified: January 19th 2019

Variant of: Djvu Ransomware

Infection Through: Vulnerability of Pirated Software, Fake Windows Updates

Ransom Size: $980 or $490

Ransom Message: _openme.txt

Can be Decrypted: Yes

Removal and Termination: Deploy the use of an efficient security software that can recognize the threat – we suggest Comodo Antivirus to help you stay protected from such dangerous rumba ransomware

Rumba Ransomware is a cryptolocker virus that was identified by a group of security experts on January 19th 2019. It belongs to a family called STOP ransomware which is a virus strain known for locking users’ files and uses it as a bait to demand a hefty ransom from the user. It has also been identified as a mutant form of a virus named Djvu Virus that belongs to the STOP ransomware family as well. This type of ransomware virus deploys the AES algorithm to encrypt and lock documents, files, videos, and databases by attaching .rumba file extension. It is known to target pirated software versions, and deploys as fake Windows Updates. The best part of this type of ransomware is that the locked files can be decrypted

How does Rumba Ransomware Infect the users’ systems

Malware authors design ransomware of this type to encrypt data (make it unusable) and to keep it that way unless the ransom is paid. To get the files back it is required to buy a decryption tool. Once the file is encrypted, all the files are renamed with an extension “.rumba” extension. While the malware author sends a ransom note with instructions to decrypt the files (Ransom Note – _openme.txt text file).

There are multiple ways to infect the system and one among the different types is Rumba ransomware:

Most of the cyber thieves exploit emails, spam campaigns, unreliable and fake software download sources. The cyber thieves use spam attachments with malicious attachments to multiply ransomware. Most of the attachments are Microsoft Office Documents, PDFs, archive files, executables etc.

Trojans are malicious programs that, gets installed and causes chain of malicious infections. By easy different types of malware, they find effective ways to convince users into downloading and installing malware by themselves without actually knowing what they are actually intending to do. The cyber thieves use malware to infect the system and through which they gain a backdoor to encrypt the user’s files and kept it locked unless the user pays the ransom. To gain access to the files back the user must purchase the decryption tool by paying a heavy ransom. While the malware author sends a ransom note with instructions to decrypt the files (Ransom Note – _openme.txt text file).

Rumba Ransomware

How to Remove Rumba Ransomware and Stay Protected

Comodo Antivirus is the most popular and the most widely used Anti-malware software for Windows. It is built with a set of features like containment to provide multiple-layer of protection. It delivers unique protection for devices in a network when it is connected from remote or wireless devices as well.

The antivirus software delivers a 7-layer Endpoint Security Platform that features Containment with auto-sandboxing, Web URL Filtering, s, Host Intrusion Prevention, and Behaviour Analysis to deliver 360 degree protection under a single roof to provide protection for devices of individual users and businesses – small or big, irrespective of the sizes from such ransomware and both known and unknown threats.

Related Resources

What is a Computer Virus?

Be Sociable, Share!
Be Sociable, Share!

Add new comment

Your name
Comment

You may use these HTML tags and attributes: <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

Secure All your devicesPC, Mac and Smartphone

Get unbeatable protection from every type of malware with Comodo‘s award-winning free Antivirus.

Download Free Antivirus Compatible with Windows 10, 8 & 7