If your files were encrypted by the Dharma ransomware and you have held onto them, there is now hope.

Someone released the decryption keys and researchers have created a decryption tool. On Wednesday, a user named gektar published a link to a Pastebin post on the BleepingComputer.com technical support forum. The post, he claimed, contained the decryption keys for all Dharma variants.

Researchers from Kaspersky Lab and ESET have verified that the keys are real and have updated their Crysis decryption tools to work for Dharma.

Even it you don't pay the ransom, researchers often find flaws in the encryption process or law authorities seize command and control servers and find the keys. Sometimes the hacker just closes up shop and releases the keys or a rival hacker breaks into the servers of its competitors and steals the keys. In any case, it is advised to keep your encrypted files on the chance that you will someday be able to restore them.

It is also a good idea to check the NoMoreRansom.org website as it is a coalition of security companies and law enforcement agencies.

Source: Network World