Darkside Ransomware Decryption Tool

[silversurfer]

We’re happy to announce the availability of a decryptor for Darkside. This family of ransomware has emerged in August 2020 and operates operate under a ransomware-as-a-service business model.

Full instructions by Bitdefender:

Bitdefender Labs

Daily source of cyber-threat information. Established 2001.

labs.bitdefender.com

 

[cruelsister]

I wonder if the News Media will ask why Colonial paid for an "Official Darkside Ransomware" from the group itself for $5 million when BitDefender had this decryptor (which works quite well against the recent variants, by the way) for free since April?

 

[The_King]

I wonder if the News Media will ask why Colonial paid for an "Official Darkside Ransomware" from the group itself for $5 million when BitDefender had this decryptor (which works quite well against the recent variants, by the way) for free since April?

Could it not be related to sensitive information that would be leaked if they did not pay?

Decrypting may have restored their system but the group could have accessed some data that maybe the company didn't want to be out in public.

 

[cruelsister]

Could it not be related to sensitive information that would be leaked if they did not pay?

Decrypting may have restored their system but the group could have accessed some data that maybe the company didn't want to be out in public.

Excellent point as the variant going around at the time sent stuff eventually to Malaysia, but I wonder if any data that was potentially passed would have been all that frightening.

A bigger concern should now be stopping SombRAT which could be used to deliver currently undecipherable ransomware variants.