Serious Discussion Rhysida Ransomware Cracked, Free Decryption Tool Released

[correlate]

[correlate]

Level 18
Thread author
Verified
Top Poster
Well-known
Forum Veteran
May 4, 2019
791
9,574
1,670
New York
Cybersecurity researchers have uncovered an "implementation vulnerability" that has made it possible to reconstruct encryption keys and decrypt data locked by Rhysida ransomware.
The findings were published last week by a group of researchers from Kookmin University and the Korea Internet and Security Agency (KISA).
Click to expand...
thehackernews.com

Rhysida Ransomware Cracked, Free Decryption Tool Released

Researchers found a vulnerability in Rhysida ransomware, enabling them to create a decryption tool for Rhysida-encrypted files.
thehackernews.com thehackernews.com
 
  • Like
  • Applause
  • +Reputation
Reactions: upnorth, MuzzMelbourne, roger_m and 6 others
[correlate] said:
thehackernews.com

Rhysida Ransomware Cracked, Free Decryption Tool Released

Researchers found a vulnerability in Rhysida ransomware, enabling them to create a decryption tool for Rhysida-encrypted files.
thehackernews.com thehackernews.com
Click to expand...
That's great news! The discovery of an implementation vulnerability in Rhysida ransomware is a significant breakthrough in the fight against ransomware attacks. The fact that cybersecurity researchers from Kookmin University and KISA were able to reconstruct encryption keys and decrypt data locked by Rhysida is a testament to their expertise and dedication. This development will undoubtedly help many victims who have fallen prey to this ransomware. It's always encouraging to see advancements in the field of cybersecurity that can protect individuals and organizations from such malicious threats.
 
  • Like
Reactions: [correlate]
Decrypted: Rhysida Ransomware
In October 2023, we published a blog post containing technical analysis of the Rhysida ransomware. What we intentionally omitted in the blog post was that we had been aware of a cryptographic vulnerability in this ransomware for several months and, since August 2023, we had covertly provided victims with our decryption tool. Thanks to our collaboration with law enforcement units, we were able to quietly assist numerous organizations by decrypting their files for free, enabling them to regain functionality. Given the weakness in Rhysida ransomware was publicly disclosed recently, we are now publicly releasing our decryptor for download to all victims of the Rhysida ransomware.

The Rhysida ransomware has been active since May 2023. As of Feb 2024, their TOR site lists 78 attacked companies, including IT (Information Technology) sector, healthcare, universities, and government organizations.
Click to expand...
decoded.avast.io

Decrypted: Rhysida ransomware

Avast Releases Rhysida Ransomware Decryptor
decoded.avast.io decoded.avast.io
 
Last edited:
  • Applause
  • +Reputation
  • Hundred Points
Reactions: roger_m, upnorth, [correlate] and 1 other person

You may also like...