A cyber-security firm released a free decryptor for the popular and sophisticated “DarkSide” ransomware, enabling victims to recover encrypted files without having to pay. The following day, DarkSide’s operators posted a press release on their data leak website, stating that they had corrected the flaw that had enabled decryption, and that only three companies may have used the decryptor successfully. They also claimed that threat actors using DarkSide would be compensated USD 600,000 to cover any loss of potential profit. Press releases and ensuring “customer” satisfaction have become commonplace as threat groups adopt a business-like approach to ransomware management. Professionalizing operations is likely to remain a focus for ransomware operators in 2021, to attract new customers and more profits.

×
Want these
Threat Intelligence reports sent straight to your inbox?
Subscribe below!
Thank you!
Error - something went wrong!
Most Recent Flipbooks
Weekly Intelligence Summary 21 October
Main story: Ransom Cartel and REvil: Partners in cybercrime?
Weekly Intelligence Summary 14 Oct
Main story: Hacktivists fan flames of Iranian anti-regime protests
Weekly Intelligence Summary 07 Oct
Main story: ProxyNotShell spells déjà vu for MS Exchange Server defenders
Weekly Intelligence Summary 30 Sept
Main story: Rogue ex-developer leaks LockBit 3.0 builder
Weekly Intelligence Summary 23 Sept
Main story: Uber compromised by Lapsus$'s resurgence
Weekly Intelligence Summary 16 Sept
Main story: Cyber attacks shock the Italian energy sector
Weekly Intelligence Summary 09 Sept
Main story: Back to school for students and ransomware groups