Tool decrypts endpoints victimized by the nasty ransomware that encrypts entire disks.
Because of a flaw in the encryption process used by the Petya ransomware, security researchers were able to reverse-engineer the malicious code and create a "vaccine," that will enable victims to decrypt their infected endpoints.
Petya is a nasty new ransomware that encrypts not just files, but the entire disk. Instead of eating up memory and time by encrypting files individually, Petya installs itself like a bootkit and encrypts the filesystem's master file table -- a much quicker method that leaves "no time to call for help," F-Secure researchers said. Petya is vicious enough to have inspired federal authorities in both the US and Canada to issue advisories.
This is not the first time a security firm has released a tool that can decrypt endpoints that were locked by a particular strain of cryptoransomware. Last year, Cisco's Talos Labs developed such a cure for TeslaCrypt.
Download BitDefender's free Petya decryption tool here.
Related stories:
About the Author(s)
You May Also Like
Beyond Spam Filters and Firewalls: Preventing Business Email Compromises in the Modern Enterprise
April 30, 2024Key Findings from the State of AppSec Report 2024
May 7, 2024Is AI Identifying Threats to Your Network?
May 14, 2024Where and Why Threat Intelligence Makes Sense for Your Enterprise Security Strategy
May 15, 2024Safeguarding Political Campaigns: Defending Against Mass Phishing Attacks
May 16, 2024
Black Hat USA - August 3-8 - Learn More
August 3, 2024Cybersecurity's Hottest New Technologies: What You Need To Know
March 21, 2024