Onyx ransomware is the newest group to emerge on the cyberattack scene, the group has generated a great deal of trouble for its victims, on its website the group already has six companies listed as victims. The group’s malware has not only encrypted files but has corrupted them as well.
The group’s malware is designed to encrypt files smaller than 2 MB, larger files are destroyed. Even after paying the ransom and receiving the decryption key, these files cannot be recovered.
This is one of the most damaging tactics in recent years, the group does not appear to care about their image or the possibility of victims not paying the ransom, the group is highly destructive.
Onyx has many similarities to the Conti ransomware, one of the most active groups in recent years, but also appears to be a variant of the Chaos ransomware.
Despite these differences Onyx ransomware acts like other ransomware, adding the .ampkcz extension to all affected files, and generating a document with ransom terms.
The victim is forwarded to a .TOR site where he or she can contact the criminals to pay the ransom, this payment is usually made with cryptocurrencies. Remembering that this is not recommended in any way.
The recovery of files encrypted by the Onyx ransomware is extremely complex, because the group corrupts the files, but recovery is possible. Digital Recovery specialises in the recovery of files encrypted by ransomware.
Recover files encrypted by Onyx ransomware
Digital Recovery is in the data recovery market for over 23 years, developing unique technologies for file recovery, whether deleted, corrupted or encrypted.
We can recover data encrypted in the vast majority of storage devices, such as databases, storages (NAS, DAS, SAN), RAID systems, servers, virtual machines and others.
All our solutions were developed by our specialists and are exclusive, and can be applied remotely in any company in the world.
We have the ability to remotely recover data in a totally secure environment without any external interference. All our processes are guided by the General Data Protection Regulation (GDPR).
We can start the recovery right now, request an initial advanced diagnostic and within a few days you will have your data back.