Bomber Ransomware's Attack Renders Files Inaccessible
Bomber Ransomware is a new file-locker family, which could end up infecting your device due to interactions with shady downloads, pirated games and software, or even fraudulent email attachments. The latter is incredibly popular – cybercriminals pretend to be a legitimate individual or institution, and ask the victim to review a document. The decoy attachment might look like a harmless invoice, CV, or another document – however, once opened, it could deploy the Bomber Ransomware onto the computer.
This ransomware's attack is swift and destructive. Once opened, it needs just a few minutes to accomplish its purpose – encrypting the majority of the victim's files. Whenever the Bomber Ransomware encrypts a file successfully, it will encode its original filename, and append the '.bomber' extension to the output. The scrambled file names make it impossible for victims to recognize their files.
Just like other cybercriminals, these ones also claim to be selling a solution. The full details of their offer can be seen in the document 'HOW TO RECOVER ENCRYPTED FILES.txt' that the malware drops on the desktop. The crooks ask the victim to send them a message at gardengarden@cock.li, and warn them that paying a ransom fee is the only way to get their data back.
Needless to say, trying to co-operate with malware creators is a terrible plan – do not accept the offer of Bomber Ransomware's operators. Instead, use an antivirus scanner to ensure the malware's removal. After this, explore alternative data recovery tools and options.