Bitdefender offers a new, free and universal REvil decryptor. The tool includes a general key for all files encrypted before July 13, 2021.
The new, universal Bitdefender decryptor tool enables victims of all REvil / Sodinokibi ransomware attacks before July 13th to restore their data and make it available again. Bitdefender developed the free tool in collaboration with a recognized law enforcement partner. Step-by-step instructions for using the REvil decryptor can also be found online.
For REvil / Sodinokibi ransomware attacks before July 13, 2021
After the REvil infrastructure went partially offline on July 13th this year, victims who had not paid a ransom could no longer restore their encrypted data. The tool now allows victims to regain control of their data.
The responsible law enforcement agencies are continuing to investigate the actors behind REvil. The partners who run the REvil decryptor-Tool, agree that it is important to publish the universal decryptor before the investigation is completed in order to help as many victims as possible. Further details on the ongoing investigations cannot be given at the moment.
REvil / Sodikinobi - one of the most prolific ransomware operators
REvil is a ransomware-as-a-service (RaaS) provider likely operating out of a country in the former Commonwealth of Independent States (CIS). The group appeared in 2019 as the successor to the now defunct GandCrab group and is one of the most productive ransomware forges on the dark web. The group's partners have since successfully targeted thousands of technology companies, managed service providers and retailers around the world. After successfully encrypting a company's data, REvil partners previously demanded high ransom payments of up to 70 million US dollars in exchange for a decryption key and the guarantee that the internal data exfiltrated during the attack would not be published.
New REvil attacks are likely to come
Bitdefender believes that new REvil attacks are imminent after the gang's servers and supporting infrastructure recently came back online after a two-month dormant period. Bitdefender urges organizations to be on high alert and take the necessary precautions.
More at Bitdefender.com
About Bitdefender Bitdefender is a leading global provider of cybersecurity solutions and antivirus software, protecting over 500 million systems in more than 150 countries. Since it was founded in 2001, the company's innovations have consistently ensured excellent security products and intelligent protection for devices, networks and cloud services for private customers and companies. As the supplier of choice, Bitdefender technology is found in 38 percent of security solutions deployed around the world and is trusted and recognized by industry experts, manufacturers and customers alike. www.bitdefender.de