DJVU Ransomware’s Latest Variant ‘Xaro’ Disguised as Cracked Software

A new variant of the DJVU ransomware, codenamed Xaro, is spreading through cracked software. Detected by American cybersecurity firm Cybereason, the ransomware infects systems alongside other malware resulting in more damage. Cybersecurity researcher Ralph Villanueva explained the payload is downloaded from dubious freeware sites and the aim is to gather and extract sensitive information from victims, who are also asked for ransoms. The discovery reminds of the risks of downloading freeware from untrustworthy sources.