sb-eu logo
Story image

Europol, FBI, Bitdefender team up on ransomware decryptor

18 Jun 2019

Global cybersecurity company Bitdefender has unveiled a new decryptor to counter the latest version of GandCrab ransomware.

Delivered in partnership with Europol, Romanian Police, DIICOT, FBI, NCA and Metropolitan Police, as well as Police Offices in France, Bulgaria and other Law Enforcement agencies, the decryptor neutralises the latest versions of GandCrab – the most prolific families of file-encrypting malware to date.

The new tool lets victims regain access to the information lost to hackers without paying a ransom. The decryptor counters versions 1 and 4, as well as versions 5 through 5.2, the latest used by cyber-criminals.

The previous decryptors for the GandCrab ransomware released by Bitdefender and partner law enforcement agencies have helped more than 30,000 victims recover ransomed data and save more than 50 million dollars by not paying a ransom.

GandCrab emerged in January 2018 and quickly gained traction due to its affiliate-based monetisation scheme, reaching a whopping 50% share of the ransomware market by August 2018.

In recent interactions on private underground forums, the GandCrab operators claimed that they have extorted more than $2 billion from victims.

The joint efforts of Bitdefender and partner law enforcement agencies have weakened the operators’ position on the market and prompted criminal affiliates to distrust the service, leading to the demise and shutdown of the operation.

“Our efforts in providing decryptors for GandCrab victims have weakened the ransomware operators by cutting off their monetisation mechanisms,” said Bitdefender representatives.

“In addition to delivering relief for victims, these efforts have contributed to establishing a positive mindset among new victims, who would rather wait for a new decryptor than give in to hackers’ ransom demands.”

To prevent ransomware infections, users should implement a security solution with layered anti-ransomware defences, regularly back up their data and avoid opening attachments delivered with unsolicited messages.

Bitdefender and its partner law enforcement agencies advise victims to not give in to the demands of ransomware operators.

Instead, they should back up the encrypted information and notify police immediately.

The new decryption tool is available immediately and can be downloaded for free on Bitdefender Labs and the No More Ransom Project.

Bitdefender has clients in more than 150 countries.

Since 2001, Bitdefender has delivered products and threat intelligence for the smart connected home, mobile users, modern businesses and their networks, devices, data centres and cloud infrastructure.

Story image
Training is essential to build cybersecurity awareness
More than ever, businesses need to ensure that all their workers have the right skills and training to protect the business from cybercrime.  More
Story image
NCC Group chosen to help improve IoT security standards for all sectors
“At NCC Group, security is in our DNA and that's why we're excited to work with the ioXt Alliance in raising security standards within the IoT ecosystem."More
Story image
Fortinet resolves to help communities through new Corporate Foundation
“Through the establishment of a Corporate Foundation, we are extending investments in security training and education, employee community engagement and disaster relief efforts to empower and protect our communities, as well as positively impact our business, employees, customers and shareholders.”More
Story image
Cyber attacks keeping business leaders up at night, new research finds
Data breaches and insider threats are keeping organisations up at night, according to new research from KnowBe4, the security awareness training and simulated phishing platform.More
Story image
Research: Rapid growth of embedded security market inevitable
With the rise of IoT, as cybercriminals find new ways to gain access to devices, new secure embedded hardware can block their points of entry.More
Story image
Top 10 riskiest IoT devices for enterprises, according to Forescout
IoT devices can become attack vectors for hackers to gain access to enterprise networks, and recent Forescout research shows businesses need to be aware of this and put adequate security measures in place.More