Pidom Ransomware

A new ransomware threat has emerged recently. Malware researchers gave it the name Pidom Ransomware. When they dissected it, they were not surprised to find out that this is yet another variant of the infamous STOP Ransomware.

Cybersecurity experts have not been able to disclose what the potential infection vector of the Pidom Ransomware is. However, they speculate that the authors of the Pidom Ransomware may be using spam email campaigns containing infected attachments, bogus software updates, and pirated software as a means to spread their creation. Once the Pidom Ransomware manages to gain access to a system, it will waste no time and begin scanning it. The goal is to locate all the files, which it was programmed to target for encryption. Then, the Pidom Ransomware would start encrypting the targeted files. When the Pidom Ransomware locks a file, it changes its name. The newly locked files get an additional extension '.pidom.' This means that a file, which was named 'delivery-box.png previously will be renamed to 'delivery-box.png.pidom.' When the encryption process is through, the Pidom Ransomware drops a ransom note. Following the pattern of almost all ransomware threats, which belong to the STOP Ransomware family, the note is named '_readme.txt.' In the note, it is not mentioned what the ransom fee is. The creators of the Pidom Ransomware demand to be contacted via email. They give out their email address – stoneland@firemail.cc.

We advise you to stay as far away as possible from individuals like the ones responsible for the Pidom Ransomware. Authors of malware are not to be trusted as they will likely trick you into giving them your hard earned money and may never deliver on their promises. A safer option is to download and install a legitimate anti-virus suite and have it clear your PC.