Ziggy Ransomware gang has decided to do good to the society by offering a refund to all its victims. Why they are doing so or their motive behind this act of kindness is yet to be known. But those spreading the said file encrypting malware have taken a pledge on Telegram to refund back the money extracted from their victims as ransom through.
Therefore, the refund campaign that started in February this year is said to benefit over 300 victims and additionally the threat actors have also chosen to release over 1000 decryption keys for those whose data was encrypted.
Sources have confirmed in the first week of March that the operators have shut down their operations and have released a decryption tool dubbed ‘Virus Total’ that not only wipes of the ransomware, but also cleans any malware or backdoors that might have been added by cyber crooks while distributing the Ziggy Ransomware.
Cybersecurity researchers have a different version to explain over this kindness. They say that those spreading ransomware are nowadays fearing about the law enforcements operating across the world as they are found taking stringent actions against those spreading malware in recent times.
One such example is Emotet that was taken down by Europol in association with other security agencies from US, Germany, Netherlands, and Australia in January 2021. Fonix that offers ransomware as a service has also come up with a similar offer as the leader of the group has decided to shut down the shop to do good to the society that is already struggling with economic jolts due to the corona virus pandemic led business lockdowns.
FYI, Maze ransomware, Wannaren Ransomware and those spreading GandCrab ransomware have already announced that they are shutting their business for reasons best known to them.