BlackMatter Ransomware Victims Helped Using Secret Decryptor

Share post:

Emsisoft has been secretly decrypting BlackMatter ransomware victims since the summer thanks to a vulnerability that allows the company to create a descryptor that recover victim’s files without paying a ransom.

Although Emsisoft alerted law enforcement agencies, ransomware negotiation companies, incident response companies, CERTS worldwide, and trusted partners regarding the decryptors, the company refused to make them public to prevent ransomware gangs from fixing the bugs.

Therefore, working quietly with Emsisoft enabled these trusted parties to refer BlackMatter victims to the company to recover their files instead of paying ransom. Apart from referring Emsisoft to victims, Emsisoft also contacted victims who were found through BlackMatter samples and publicly uploaded ransom notes on various websites.

BlackMatter became suspicious and angry with ransomware negotiators, because the victims refused to pay ransom. Later, the gang learned about the decryptor at the end of September and was then able to fix the bugs, which enabled Emsisoft to decrypt the files of the victims. However, victims, who were encrypted before the end of September, can still access Emsisoft via their Ransomware Recovery Service.

For more information, read the original story in Bleeping Computer.

SUBSCRIBE NOW

Related articles

DOGE’s Teen Hacker Stirs Concern Over Musk Team’s Access to Federal Databases

A 19-year-old named Edward “Big Balls” Coristine has raised red flags after Wired revealed he holds a key...

Deep Seek and Open Source AI – Without the Hype: Discussion with Robert Falzon, Head of Engineering, Check Point

DeepSeek AI is shaking up the cybersecurity world—are we prepared for the risks? Join host Jim Love and...

Researchers Jailbreak DeepSeek AI, Expose System Prompt and Raise Security Concerns

Security researchers at Wallarm have successfully jailbroken DeepSeek, a recently released open-source AI model from China. The jailbreak...

New SMS Phishing Scam Targets U.S. Toll Road Users with Fake Payment Alerts

Brian Krebs of the Krebs on Security blog did a big piece leading with how residents across the...

Become a member

New, Relevant Tech Stories. Our article selection is done by industry professionals. Our writers summarize them to give you the key takeaways