CyberVolk Ransomware Fails Due to Critical Encryption Flaw

Have you ever witnessed hackers mess up their own attack? That’s exactly what CyberVolk did with their brand new ransomware known as VolkLocker. Upon reading about it, I actually chuckled a bit. This malware attempted to portray itself as a "fearsome" piece of software, but it ultimately failed due to a blunder.

What was the major error that these cybercriminals made?​

Volcker is a ransomware programme that encrypts the victim's files and demands the payment of ransom in order to release them. This is typical behaviour for ransomware. However, what is so funny about this case is that the cybercriminals used just one single encryption key for all of their victims and created a copy of that encryption key in a file located on the hard drive of the victim’s computer.

In other words, the victim had a complete copy of the decryption key on their own computer.

Why this is a major issue for hackers​

Due to this blunder:

• All files are encrypted with a single key
• That key resides on the infected PC
• Victims can obtain that key to decrypt files at no cost

Although I have seen some poorly coded software, this is possibly the worst example yet, haha.

A weak start for a new Ransomware group​

CyberVolk attempted to market this ransomware product to other cybercriminals using Telegram as a vehicle. They envisioned it would be sold as a subscription service. However, due to this defect, the malware has essentially been rendered ineffective. Who would be willing to pay for a broken product? It’s like trying to sell a lock but providing the entire world access to the keys.