CryptoLocker victims able to decrypt their files for free

Published by

teaser

Computer security experts and researchers from the firms Fox-IT and FireEye have collaborated to reverse engineer the CryptoLocker software in a project they called "Operation Tovar." CryptoLocker would encrypt the files on the victim's storage using AES-256 bit encryption and demand about $300 in bitcoin in order to retrieve the decryption key.



 If the victim didn't pay within a specified time, then the victim's files would remain encrypted forever. Well, until a couple of days ago, at least. 

The collaboration between the two has led to the identification of many of the private keys used by CryptoLocker, and they have subsequently developed a free decryption assistance website and tool to help victims of the ransomware retrieve their data at no cost.

The site requires the user to upload any file that has been affected by the ransomware (they specify that they will not store or view the file), and the tool will email the user the relevant private key that can be used for decryption. At that point the user must download a specific tool, enter the private key and the location of the encrypted file, and the tool will decrypt the encrypted file.

CryptoLocker victims able to decrypt their files for free


Share this content
Twitter Facebook Reddit WhatsApp Email Print