#DataRecovery

Free Decryptor Released for BitLocker-Based ShrinkLocker Ransomware Victims

by

November 13, 2024 at 09:46AM Bitdefender has launched a free decryptor for ShrinkLocker ransomware, allowing data recovery following an analysis of the malware’s operations. The ransomware uses BitLocker for encryption and exploits trusted relationships to infiltrate systems. Recommendations for organizations include proactive monitoring and configuring BitLocker policies to mitigate risks. ### Meeting Takeaways 1. **Bitdefender’s … Read more

New ShrinkLocker ransomware decryptor recovers BitLocker password

by

November 13, 2024 at 09:24AM Bitdefender has released a decryptor for the ShrinkLocker ransomware, which exploits Windows BitLocker to encrypt files. Despite its low sophistication, it has caused significant damage in attacks on organizations, including healthcare. The decryptor allows victims to recover files when used promptly, targeting specific configurations of BitLocker protection. ### Meeting Takeaways … Read more

Avast Releases Free Decryptor for Mallox Ransomware

by

October 23, 2024 at 10:07AM Avast has launched a free decryptor for the Mallox ransomware following the discovery of a vulnerability in its cryptographic system. **Meeting Takeaways:** 1. **Release Announcement**: Avast has launched a free decryptor specifically for the Mallox ransomware. 2. **Reason for Release**: The decryptor was developed after Avast identified a vulnerability in … Read more

So you paid a ransom demand … and now the decryptor doesn’t work

by

September 11, 2024 at 09:39AM Executives and security leaders facing ransomware attacks endure immense stress and uncertainty. In a recent incident involving Hazard ransomware, victims paid a ransom for a decryption tool that ultimately didn’t work, escalating their distress. Despite this, cybersecurity experts emphasize the need for caution, as success with decryption tools is not … Read more

LA County Superior Court closes doors to reboot justice after ransomware attack

by

July 22, 2024 at 01:26PM The Los Angeles County Superior Court, the largest in America, closed all 36 courthouses due to an “unprecedented” ransomware attack, which bricked every electronic platform containing court data. Court employees and infosec experts are working to restore court servers and databases, aiming to reopen on Tuesday, following the need to … Read more

CDK Attack: Why Contingency Planning Is Critical for SaaS Customers

by

June 24, 2024 at 06:03PM CDK is working to restore its dealer management system after a ransomware attack, impacting daily operations at 15,000 automotive dealers. The meeting notes highlight the ongoing impact on daily operations at approximately 15,000 automotive dealers due to CDK’s efforts to restore its dealer management system following a ransomware attack last … Read more

Car dealers stuck in the slow lane after cyber woes at software biz CDK

by

June 24, 2024 at 02:08PM Several US companies filing Form 8-Ks with the SEC have referenced a cyber incident affecting CDK Global, a major software provider for car dealerships. The incident has disrupted business operations, leading affected companies to deploy mitigation strategies. CDK has faced two system shutdowns and is reportedly considering a ransom payment … Read more

FBI Distributes 7,000 LockBit Ransomware Decryption Keys to Help Victims

by

June 7, 2024 at 05:00AM The FBI has 7,000 decryption keys for LockBit ransomware, aiming to help victims. The gang’s infrastructure was dismantled in an international operation, and its administrator, Dmitry Yuryevich Khoroshev, was identified. Despite this, LockBit remains active, with new variants targeting vulnerable Microsoft SQL servers and VMware ESXi systems. Organizations are warned … Read more

FBI encourages LockBit victims to step right up for free encryption keys

by

June 6, 2024 at 03:49PM The FBI, together with international partners, took down the LockBit ransomware gang and identified a suspect named Dmitry Khoroshev. They have obtained over 7,000 decryption keys to help victims recover their data. However, victims should still remain cautious as LockBit may still possess their data, emphasizing the importance of preventing … Read more

LockBit Ransomware Gang Resurfaces With New Site

by

February 26, 2024 at 08:51AM The LockBit ransomware operators faced law enforcement disruption, seizure of servers, and the arrest of individuals. Authorities obtained decryption keys and offered rewards. LockBitSupp launched a new leak site, attributing the takedown to a PHP flaw and announced improvements. LockBit faced decline and struggles attracting affiliates. The true masterminds behind … Read more