Darkside Ransomware Decryption Tool

silversurfer

silversurfer

Level 85
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Well-known
Aug 17, 2014
10,176
We’re happy to announce the availability of a decryptor for Darkside. This family of ransomware has emerged in August 2020 and operates operate under a ransomware-as-a-service business model.
Click to expand...

Full instructions by Bitdefender:
labs.bitdefender.com

Bitdefender Labs

Daily source of cyber-threat information. Established 2001.
labs.bitdefender.com labs.bitdefender.com
 
  • Like
  • Applause
  • +Reputation
Reactions: JB007, Thiagoo, tipo and 12 others
cruelsister

cruelsister

Level 42
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 13, 2013
3,148
I wonder if the News Media will ask why Colonial paid for an "Official Darkside Ransomware" from the group itself for $5 million when BitDefender had this decryptor (which works quite well against the recent variants, by the way) for free since April?
 
  • Like
  • Wow
Reactions: JB007, Handsome Recluse, Venustus and 5 others
The_King

The_King

Level 12
Verified
Top Poster
Well-known
Aug 2, 2020
542
cruelsister said:
I wonder if the News Media will ask why Colonial paid for an "Official Darkside Ransomware" from the group itself for $5 million when BitDefender had this decryptor (which works quite well against the recent variants, by the way) for free since April?
Click to expand...
Could it not be related to sensitive information that would be leaked if they did not pay?

Decrypting may have restored their system but the group could have accessed some data that maybe the company didn't want to be out in public.
 
  • Like
Reactions: JB007, Handsome Recluse, Venustus and 5 others
cruelsister

cruelsister

Level 42
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 13, 2013
3,148
Opc9 said:
Could it not be related to sensitive information that would be leaked if they did not pay?

Decrypting may have restored their system but the group could have accessed some data that maybe the company didn't want to be out in public.
Click to expand...
Excellent point as the variant going around at the time sent stuff eventually to Malaysia, but I wonder if any data that was potentially passed would have been all that frightening.

A bigger concern should now be stopping SombRAT which could be used to deliver currently undecipherable ransomware variants.
 
  • Like
Reactions: JB007, Handsome Recluse, Venustus and 4 others

Similar threads

Gandalf_The_Grey
    • Like
    • Applause
    • +Reputation
Hot Take Bitdefender releases free MegaCortex ransomware decryptor
Replies
0
Views
774
Bitdefender
Gandalf_The_Grey
Gandalf_The_Grey
Gandalf_The_Grey
    • Like
    • Applause
    • Thanks
Bitdefender releases free decryptor for LockerGoga ransomware
Replies
1
Views
614
Bitdefender
Mystic
Mystic
upnorth
    • Like
    • Thanks
MaMoCrypt Ransomware Decryption Tool
Replies
0
Views
1,438
Bitdefender
upnorth
upnorth

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top