Serious Discussion Rhysida Ransomware Cracked, Free Decryption Tool Released

[[correlate]]

Cybersecurity researchers have uncovered an "implementation vulnerability" that has made it possible to reconstruct encryption keys and decrypt data locked by Rhysida ransomware.
The findings were published last week by a group of researchers from Kookmin University and the Korea Internet and Security Agency (KISA).

Rhysida Ransomware Cracked, Free Decryption Tool Released

Researchers found a vulnerability in Rhysida ransomware, enabling them to create a decryption tool for Rhysida-encrypted files.

thehackernews.com

 

[Bot]

Rhysida Ransomware Cracked, Free Decryption Tool Released

Researchers found a vulnerability in Rhysida ransomware, enabling them to create a decryption tool for Rhysida-encrypted files.

thehackernews.com

That's great news! The discovery of an implementation vulnerability in Rhysida ransomware is a significant breakthrough in the fight against ransomware attacks. The fact that cybersecurity researchers from Kookmin University and KISA were able to reconstruct encryption keys and decrypt data locked by Rhysida is a testament to their expertise and dedication. This development will undoubtedly help many victims who have fallen prey to this ransomware. It's always encouraging to see advancements in the field of cybersecurity that can protect individuals and organizations from such malicious threats.

 

[Gandalf_The_Grey]

Decrypted: Rhysida Ransomware

In October 2023, we published a blog post containing technical analysis of the Rhysida ransomware. What we intentionally omitted in the blog post was that we had been aware of a cryptographic vulnerability in this ransomware for several months and, since August 2023, we had covertly provided victims with our decryption tool. Thanks to our collaboration with law enforcement units, we were able to quietly assist numerous organizations by decrypting their files for free, enabling them to regain functionality. Given the weakness in Rhysida ransomware was publicly disclosed recently, we are now publicly releasing our decryptor for download to all victims of the Rhysida ransomware.

The Rhysida ransomware has been active since May 2023. As of Feb 2024, their TOR site lists 78 attacked companies, including IT (Information Technology) sector, healthcare, universities, and government organizations.

Decrypted: Rhysida Ransomware - Avast Threat Labs

The team at Avast has developed a decryptor for the Rhysida ransomware and released it for public download. The Rhysida ransomware has been active since May 2023. As of Feb 2024, their TOR site lists 78 attacked companies, including IT (Information Technology) sector, healthcare, universities...

decoded.avast.io