As with any ransomware, the victim is recommended to never pay the ransom. If infected, the victim should delete the encrypted files and restore them from a backup. Backups are the primary defense against any ransomware. It is recommended to use the 3-2-1 method, maintaining three copies of the data on two separate storage devices with one of them being offsite. The other primary defense is not being infected in the first place, or quickly detecting and responding to intrusions soon after they start. Endpoint Detection and Response (EDR) tools, if monitored, can be the best, last line of defense to stop ransomware operators and other attackers before they have a chance to steal or encrypt files. There are some legitimate programs from reputable security companies that can be used to recover files encrypted by ransomware, but it is important to carefully research the company providing the software before attempting to use it. Remote Desktop Protocol (RDP) exposed to the Internet and malware distributed through phishing are the primary methods of ransomware distribution. If the email looks odd then it is generally not a good idea to follow any links or open attached files.

To read more: https://www.bleepingcomputer.com/news/security/fake-ransomware-decryptor-double-encrypts-desperate-victims-files/