There is now a Free Fix for the Linux.Encoder.1 Ransomware (Updated)
Posted by: Timothy Weaver on 11/12/2015 10:09 AM [ Comments ]
We recently reported the Linux Encoder ransomware that encrypts Linux systems.
We are happy to report that Bitdefender has developed a tool to decrypt the files.
Researchers were able to develop a free decryption tool that determines the IV and encryption key by analyzing an encrypted file, performs the decryption, and fixes permissions, thereby restoring each and every affected file to its original state.
"This information can be easily retrieved by looking at the file’s timestamp. This is a huge design flaw that allows retrieval of the AES key without having to decrypt it with the RSA public key sold by the Trojan’s operator(s)."
Source: Grahamcluley
Researchers were able to develop a free decryption tool that determines the IV and encryption key by analyzing an encrypted file, performs the decryption, and fixes permissions, thereby restoring each and every affected file to its original state.
"This information can be easily retrieved by looking at the file’s timestamp. This is a huge design flaw that allows retrieval of the AES key without having to decrypt it with the RSA public key sold by the Trojan’s operator(s)."
Source: Grahamcluley
Comments