Tuesday April 12, 2016

Petya Ransomware Encryption System Cracked

Score one for the good guys. Security experts have come up with a way to recover data from computers infected with the Petya ransomware without giving a single penny to cybercriminals. Thanks to Quartz-1 for the heads up.

An unidentified programmer has produced a tool that exploits shortfalls in the way the malware encrypts a file that allows Windows to start up. In notes put on code-sharing site Github, he said he had produced the key generator to help his father-in-law unlock his Petya-encrypted computer. The malware, which started circulating in large numbers in March, demands a ransom of 0.9 bitcoins (آ£265). It hid itself in documents attached to emails purporting to come from people looking for work.

Comments