Home Ā» Security Industry Hits Back with MegaCortex Decryptor
Hacking

Security Industry Hits Back with MegaCortex Decryptor

by Infosecurity Magazine - Information Security & IT Security
written by Infosecurity Magazine - Information Security & IT Security 0 comment

Security industry stakeholders have joined forces again to offer ransomware victims a way to mitigate the worst impacts of a compromise, with a new decryptor for MegaCortex.

The new decryption tool will allow victims of the variant to recover their files for free.

It was announced by Bitdefender, although the security vendor acknowledged that the tool was built in cooperation with Europol, the No More Ransom Project, the ZĆ¼rich Public Prosecutor’s Office and the ZĆ¼rich Cantonal Police.

Interestingly, the anti-malware vendorā€™s announcement cited news from October 2021, when 12 individuals were arrested in connection with the Dharma, MegaCortex and LockerGoga ransomware families.

Itā€™s likely that the arrest of what Europol described as ā€œhigh-value targetsā€ ultimately led to the development of the MegaCortex decryptor.

A statement from the ZĆ¼rich Public Prosecutor’s Office back in September 2022 revealed as much, claiming that investigators had been able to recover multiple private keys used by the threat actors.

ā€œThese keys enable damaged companies and institutions to restore data previously encrypted with the LockerGoga or MegaCortex malware,ā€ it explained.

ā€œIn cooperation with Europol, the No More Ransom Project and the company Bitdefender, a tool is provided that supports the victims in decrypting LockerGoga. This is available at www.nomoreransom.org. MegaCortex decryption tool will be released soon.ā€

The LockerGaga decryptor was released in September last year when that announcement was made.

Together, the three variants are estimated to have compromised 1800 victims in 71 countries.

MegaCortex was first spotted back in May 2019. Victims were displayed a ransom note containing various references to cult ā€˜90s film The Matrix, and the variantā€™s name echoes that of the company (MetaCortex) where the movieā€™s hero, Neo, works.

Some targeted corporate victims were asked to pay multimillion-dollar ransoms for a decryption key, with the group also one of the firstĀ to use double extortion tactics by exfiltrating data and threatening to leak it.

Source: Read More

You may also like

New Cheats May Emerge After Riot Games Hack

Microsoft Security Sales Hit $20B as Consolidation Increases

Hackers Using Sliver Framework as an Alternative to Cobalt Strike & Metasploit

Skyhawk Security Launches Multicloud Runtime Threat Detection and Response Platform

[F-Secure Whitepaper] DEEPGUARD Proactive on-host protection against new and emerging threats, 4th edition (latest)

New Report Finds Insider Threats on the Rise, Growing Cloud Use, and Lack of...

Leave a Comment

CyberNonStop

Cybernonstop is created to bring news and knowledge through articles to visitors.

Do not forget to subscribe.

  • 3033 Ogden Ave. Suite 113, Lisle IL USA
  • Email: nonstop@cybernonstop.com

About Links

Useful Links

Laest News

Where can I download automated attack applications ?
EU Pega Committee Hears Call For Policy Overhaul on Spyware
Microsoft Security Sales Hit $20B as Consolidation Increases
Bypassing Cloudflare WAF: XSS via SQL Injection

@2021 – All Right Reserved. Designed and Developed by PenciDesign

Facebook Twitter Instagram Linkedin Youtube Email
Close