Tuesday, April 13, 2021
  • Salesforce DevSecOps: Avoiding Arrested Development
  • How AI is Contributing to Global Warming and What it Can Learn from Bitcoin
  • Hackers Leak Hacker Data in Swarmshop Breach
  • This Day in History 1861: Confederacy Starts War With United States to Force an Expansion of Slavery
  • Ghidra 101: Creating Structures in Ghidra

Security Boulevard

The Home of the Security Bloggers Network

Community Chats Webinars Library
  • Home
    • Cybersecurity News
    • Features
    • Industry Spotlight
    • News Releases
  • Security Bloggers Network
    • Latest Posts
    • Contributors
    • Syndicate Your Blog
    • Write for Security Boulevard
  • Webinars
    • Upcoming
    • On-Demand
  • Chat
    • Security Boulevard Chat
    • Marketing InSecurity Podcast
  • Library
  • Related Sites
    • MediaOps Inc.
    • DevOps.com
    • Container Journal
    • Digital Anarchist
    • SweetCode.io
  • Media Kit

  • Analytics
  • AppSec
  • CISO
  • Cloud
  • DevOps
  • GRC
  • Identity
  • Incident Response
  • IoT / ICS
  • Threats / Breaches
  • More
    • Blockchain / Digital Currencies
    • Careers
    • Cyberlaw
    • Mobile
    • Social Engineering
  • Humor
Data Security SBN News Security Bloggers Network 

Home » Cybersecurity » Data Security » Researchers Release Decryptor that Works against GandCrab Version 5.2

Researchers Release Decryptor that Works against GandCrab Version 5.2

by David Bisson on June 18, 2019

Security researchers have released a decryptor that works against the latest variants of GandCrab ransomware, including version 5.2.

On 17 June, Bitdefender announced that users can download the tool from the No More Ransom Project’s website. They can then use the utility to freely decrypt any and all files which samples of GandCrab through version 5.2 of the ransomware family have previously encrypted.

The release of this decryptor comes at an important time. In early June, the creators of the ransomware stated on the underground hacking and malware forum Exploit.in that they would be deleting all of GandCrab’s decryption keys as part of their transition into retirement. They went on to explain that they had made this decision after allegedly generating $2 billion in revenue from their ransomware campaigns, including $150 million every year since the threat’s inception.

The GandCrab retirement post. (Source: Bleeping Computer)

These numbers seem a bit high to Bitdefender. Bogdan Botezatu, director of threat research at the Roman digital security and anti-virus software firm, explains that two previous GandCrab decryptors developed in partnership with law enforcement agencies particularly helped limit the profitability of the ransomware. He clarifies this impact in a blog post:

These tools totaled more than 30,000 successful decryptions and have saved victims roughly $US 50 MILLION in unpaid ransom. Most importantly, it helped us weaken the ransomware operators by cutting off their monetization mechanisms and establishing a positive mindset among new victims, who would rather wait for a new decryptor than give in to hackers’ ransom demands.

Users who’ve fallen victim to GandCrab ransomware who haven’t paid the ransom should leverage Bitdefender’s updated tool to recover their affected files.

Going forward, it’s reasonable to expect that other ransomware families will fill the void previously occupied by GandCrab once its (Read more...)

*** This is a Security Bloggers Network syndicated blog from The State of Security authored by David Bisson. Read the original post at: https://www.tripwire.com/state-of-security/security-data-protection/researchers-release-decryptor-that-works-against-gandcrab-version-5-2/

June 18, 2019June 18, 2019 David Bisson decryptor, gandcrab, IT Security and Data Protection, Latest Security News, Ransomware
  • ← Make it Harder to Hide: 3 Techniques for Conducting Threat Hunting at Scale
  • Netflix security engineers report several TCP networking vulnerabilities in FreeBSD and Linux kernels →

TechStrong TV – Live

Watch latest episodes and shows

Subscribe to our Newsletters

Get breaking news, free eBooks and upcoming events delivered to your inbox.
  • View Security Boulevard Privacy Policy

Most Read on the Boulevard

Facebook Sucks: Huge 500M-User Breach ‘Is Your Fault’
Understanding EtterSilent and the Cybercrime Supply Chain
Should You Hire a Computer Forensics Specialist?
Son of Stuxnet? Iran Nuke Site Hacked ‘by Israel’ (Again)
Nation-State Cyberthreats Persist
Announcing ShiftLeft CORE — A Code Security Platform
What is Cyber Risk?
Remote Work: How To Limit Cybersecurity Risks?
How Insider DLP Risks Impact Cybersecurity & Student Data Privacy
No! Not the beer! Cyber Attack Brought Molson Coors to a Halt

Upcoming Webinars

Tue 13

How to Build Safer Cloud-Native Applications

April 13 @ 3:00 pm - 4:00 pm
Wed 14

AppSec Risk: You Can’t Manage What You Can’t Measure

April 14 @ 1:00 pm - 2:00 pm
Thu 15

The Age of Collaborative Security

April 15 @ 11:00 am - 12:00 pm
Fri 16

Expect More From Your AppSec Vendor

April 16 @ 1:00 pm - 2:00 pm
Wed 21

Managing Open Policy Agent at Scale – Styra DAS

April 21 @ 3:00 pm - 4:00 pm
Thu 22

A New Approach to Secure Web Gateways

April 22 @ 11:00 am - 12:00 pm
Mon 26

The Kubernetes Network (Security) Effect

April 26 @ 9:00 am - 10:00 am
Mon 26

Application Security: Moving at the Speed of DevOps

April 26 @ 1:00 pm - 2:00 pm
May 05

Managing Permissions and Entitlements is at the Core of a Zero Trust Model in the Cloud

May 5 @ 3:00 pm - 4:00 pm

More Webinars

Download Free eBook

Managing the AppSec Toolstack

Recent Security Boulevard Chats

  • Cloud, DevSecOps and Network Security, All Together?
  • Security-as-Code with Tim Jefferson, Barracuda Networks
  • ASRTM with Rohit Sethi, Security Compass
  • Deception: Art or Science, Ofer Israeli, Illusive Networks
  • Tips to Secure IoT and Connected Systems w/ DigiCert

Industry Spotlight

Salesforce DevSecOps: Avoiding Arrested Development
Application Security Cybersecurity Data Security Industry Spotlight Security Boulevard (Original) 

Salesforce DevSecOps: Avoiding Arrested Development

April 13, 2021 Waqas Nazir | 44 minutes ago 0
Identity Management Day: Cybercriminals No Longer Hack in, They Log In
Cybersecurity Identity & Access Industry Spotlight Security Boulevard (Original) 

Identity Management Day: Cybercriminals No Longer Hack in, They Log In

April 12, 2021 Brad Shewmake | Yesterday 0
Visibility, Context, Automation are Key to Security Control
CISO Suite Cloud Security Cybersecurity Data Security Endpoint Industry Spotlight Network Security Security Boulevard (Original) 

Visibility, Context, Automation are Key to Security Control

April 12, 2021 Ron Davidson | Yesterday 0

Top Stories

Son of Stuxnet? Iran Nuke Site Hacked ‘by Israel’ (Again)
Analytics & Intelligence Application Security AppSec Cyberlaw Cybersecurity Deep Fake and Other Social Engineering Tactics Endpoint Featured Governance, Risk & Compliance Identity & Access Identity and Access Management Incident Response IoT & ICS Security Malware Network Security News Securing the Edge Security Awareness Security Boulevard (Original) Social Engineering Spotlight Threat Intelligence Threats & Breaches Vulnerabilities 

Son of Stuxnet? Iran Nuke Site Hacked ‘by Israel’ (Again)

April 12, 2021 Richi Jennings | Yesterday 0
Facebook Sucks: Huge 500M-User Breach ‘Is Your Fault’
Analytics & Intelligence Application Security AppSec Cloud Security Cyberlaw Cybersecurity Data Security Featured Governance, Risk & Compliance Identity & Access Incident Response News Security Boulevard (Original) Social Engineering Spotlight Threat Intelligence Threats & Breaches Vulnerabilities 

Facebook Sucks: Huge 500M-User Breach ‘Is Your Fault’

April 8, 2021 Richi Jennings | 4 days ago 0
Apple Fiddles While App Store Burns: $1M Bitcoin Scam FAIL
Analytics & Intelligence Application Security Cybersecurity Data Security Endpoint Featured Identity & Access Malware Mobile Security News Security Boulevard (Original) Spotlight 

Apple Fiddles While App Store Burns: $1M Bitcoin Scam FAIL

April 5, 2021 Richi Jennings | Apr 05 0

Security Humor

Robert M. Lee's & Jeff Haas' Little Bobby Comics - 'WEEK 324'

Robert M. Lee’s & Jeff Haas’ Little Bobby Comics – ‘WEEK 324’

Join the Community

  • Add your blog to Security Bloggers Network
  • Write for Security Boulevard
  • Bloggers Meetup and Awards
  • Ask a Question
  • Email: info@securityboulevard.com

Useful Links

  • About
  • Media Kit
  • Sponsors Info
  • Copyright
  • TOS
  • Privacy Policy
  • DMCA Compliance Statement

Other Mediaops Sites

  • Container Journal
  • DevOps.com
  • DevOps Connect
  • DevOps Institute
Copyright © 2021 MediaOps Inc. All rights reserved.
Our website uses cookies. By continuing to browse the website you are agreeing to our use of cookies. For more information on how we use cookies and how you can disable them, please read our Privacy Policy.