New Ransomware Variant (.dzxn0liBX) Encrypts Files and Backups

A new ransomware variant with the extension .dzxn0liBX has been reported, encrypting almost all files except .exe and .dll files. This suggests a targeted approach to keep systems operational while rendering data inaccessible. The attackers left a text file with contact information and warnings against recovery attempts, a common tactic in ransomware attacks. Notably, the backup was also encrypted, highlighting the importance of offline or air-gapped backups. This incident underscores the evolving threat landscape where ransomware continues to adapt and bypass traditional security measures. Organizations should ensure that backups are isolated and secure, implement network segmentation, and maintain robust incident response plans. Regular security audits and employee training are also crucial to prevent initial infections. The lack of information on this specific variant suggests it may be new or relatively unknown, emphasizing the need for vigilance and proactive security measures. Cybersecurity professionals should monitor for updates on this variant and share information with relevant organizations to enhance collective defenses.