The Volcano Demon ransomware group has recently adopted a new tactic of making threatening phone calls to its victims. Reports from TechRadar indicate that this group poses a significant threat to businesses. Utilizing a new encryption tool called LukaLocker, the Volcano Demon group gains unauthorized access to a victim’s network, encrypts files and systems, and steals sensitive data. They then demand a ransom payment in cryptocurrency in exchange for the decryption key.
What sets the Volcano Demon group apart is their avoidance of data leak websites, opting instead to make direct and threatening phone calls to the leaders of the victimized companies. These calls are often made from unknown numbers and are designed to exert pressure on the victims.
LukaLocker, the encryption tool used by Volcano Demon, is capable of operating on both Windows and Linux systems. It also can delete activity logs, making it challenging to detect and analyze for cybersecurity researchers.
To address this threat, experts suggest that businesses increase their vigilance. This can be achieved through regular data backups, keeping security software up to date, and providing cybersecurity awareness training to employees. These measures are crucial for preventing and minimizing the damage caused by ransomware attacks.
