KBK Ransomware

The GlobeImposter 2.0 Ransomware was first spotted in 2018, and it was obvious that its authors opted to rip off the ransom note design and structure that the infamous Globe Ransomware uses immediately. However, while the latter turned out to be decryptable, the same cannot be said about the former – the GlobeImposter 2.0 Ransomware is still impossible to decrypt for free, and its victims may often rely on alternative data recovery options that are not guaranteed to work.

Since the release of the GlobeImposter 2.0 Ransomware, we have also come across a large number of file-lockers based on this project – one of the latest threats based on GlobeImposter’s code goes by the name KBK Ransomware, and it is, once again, not decryptable for free. Having your files locked by the KBK Ransomware can be a major issue since you will be limited in terms of recovery options severely – you can either restore your files from a backup or use data recovery tools whose success rate may vary greatly.

Threats like the KBK Ransomware may often be spread via fake downloads, fake email attachments or pirated software and media – keep this in mind the next time you are downloading files from the Web, and you may be able to dodge potentially harmful content. Users who do not manage to stop the KBK Ransomware on time may soon end up with a hard drive full of encrypted files whose names have been modified to include the extension ‘.{Killback@protonmail.com}.KBK.’

The KBK Ransomware also delivers a ransom note that contains information about the attack, as well as payment instructions. We advise you to ignore the demands of the perpetrators since paying them is not a viable solution. If you are one of the KBK Ransomware’s victims, you should use an anti-malware tool to eradicate the file-locker, and then try to get your files back by restoring from a backup or using data recovery tools.