Malware

Avast releases free decrypters for AtomSilo and LockFile ransomware families

Security firm Avast released today decryptors for AtomSilo and LockFile ransomware that allow victims to recover their files for free.

Cyber security firm Avast has released today decryption utilities for AtomSilo and LockFile ransomware that allow the victims to recover their files for free.

Experts pointed out that AtomSilo and LockFile ransomware only have a few minor differences, for this reason, AVAST provides a single decryptor.

On Oct 17, 2021, researcher Jiří Vinopal announced to have cracked the AtomSilo ransomware by exploiting a vulnerability that allowed him to decrypt files without paying the ransom.

Later he announced to have cracked the LockFile ransomware strain.

“Both the AtomSilo and LockFile ransomware strains are very similar to each other and except for minor differences, this description covers both of them.” reads the post published by AVAST. “We prepared our very own free Avast decryptor for both the AtomSilo and LockFile strains.”

Avast highlights a limitation of the decryption process because its Avast AtomSilo decryptor relies on a known file format in order to verify that the file was successfully decrypted. This implies that some files, such as files with proprietary or unknown format, may not be decrypted.

Avast has released today a decryption tool for Babuk ransomware that allows victims to recover their files for free. The decryptor was created using the leaked source code and decryption keys.

Avast released a free decryptor for the Babuk ransomware here.

Researchers from Bleeping Computer tested the decryptor and determined that it “will likely work only for victims whose keys were leaked as part of the Babuk source code dump.”

Follow me on Twitter: @securityaffairs and Facebook

[adrotate banner=”9″][adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – hacking, AtomSilo ransomware)

[adrotate banner=”5″]

[adrotate banner=”13″]

Pierluigi Paganini

Pierluigi Paganini is member of the ENISA (European Union Agency for Network and Information Security) Threat Landscape Stakeholder Group and Cyber G7 Group, he is also a Security Evangelist, Security Analyst and Freelance Writer. Editor-in-Chief at "Cyber Defense Magazine", Pierluigi is a cyber security expert with over 20 years experience in the field, he is Certified Ethical Hacker at EC Council in London. The passion for writing and a strong belief that security is founded on sharing and awareness led Pierluigi to find the security blog "Security Affairs" recently named a Top National Security Resource for US. Pierluigi is a member of the "The Hacker News" team and he is a writer for some major publications in the field such as Cyber War Zone, ICTTF, Infosec Island, Infosec Institute, The Hacker News Magazine and for many other Security magazines. Author of the Books "The Deep Dark Web" and “Digital Virtual Currency and Bitcoin”.

Recent Posts

U.S. CISA adds a Samsung MagicINFO 9 Server flaw to its Known Exploited Vulnerabilities catalog

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds a Samsung MagicINFO 9 Server vulnerability to its…

8 hours ago

New Signal update stops Windows from capturing user chats

Signal implements new screen security on Windows 11, blocking screenshots by default to protect user…

16 hours ago

Law enforcement dismantled the infrastructure behind Lumma Stealer MaaS

Microsoft found 394,000 Windows systems talking to Lumma stealer controllers, a victim pool that included…

21 hours ago

Russia-linked APT28 targets western logistics entities and technology firms

CISA warns Russia-linked group APT28 is targeting Western logistics and tech firms aiding Ukraine, posing…

23 hours ago

A cyberattack was responsible for the week-long outage affecting Cellcom wireless network

Cellcom, a regional wireless carrier based in Wisconsin (US), announced that a cyberattack is the…

1 day ago

Coinbase data breach impacted 69,461 individuals

Cryptocurrency exchange Coinbase announced that the recent data breach exposed data belonging to 69,461 individuals.…

2 days ago