With ransomware attacks on the rise, bogus remediation measures can worsen the situation. A typical example of this is the scandal by UK-based IT company Red Mosquito. A subsidiary of this company, Red Mosquito Data Recovery (RMDR), has reportedly faked ransomware recovery services as it was caught negotiating ransom with attackers. A sting operation by security researcher Fabian Wosar revealed that the subsidiary paid off attackers at a lower price and then sold decryption services to victims at a much higher price.
How was the scandal uncovered?
Thus, RMDR paid the ransom and was selling the so-called ransomware recovery services at higher prices.
A word of caution
Wosar advises ransomware victims to be wary of companies offering data recovery services. “Ransomware victims need to be aware that there’s no silver bullet when it comes to restoring their data. There is also no shame for a data recovery company in paying the ransom, as long as they are open and transparent about it,” Wosar told ProPublica.
Upon contacting, Red Mosquito did not respond to emails or calls regarding this spurious incident.