406/67 Friday, November 15, 2024
Bitdefender, the renowned cybersecurity company, has launched a free decryption tool to help victims unlock data encrypted by the ShrinkLocker ransomware. After thoroughly analyzing this malware, it was discovered that ShrinkLocker uses VBScript techniques and the BitLocker encryption feature of Microsoft Windows to encrypt files on victims’ systems. Despite its relatively simple technique compared to modern ransomware, it proves to be highly effective in attacks and can spread rapidly.
Martin Zugec, Director of Technical Solutions at Bitdefender, revealed that ShrinkLocker utilizes a combination of Group Policy Objects (GPO) and scheduled tasks to encrypt files, allowing it to encrypt devices within a network in just 10 minutes per device. Its simplicity makes it attractive to ordinary hackers who are not part of larger ransomware groups, enabling widespread damage. In response to these attacks, Bitdefender has released a free decryption tool to help victims recover encrypted data. Users can download the tool from a link on Bitdefender’s website and follow the detailed installation instructions. However, Zugec warned that while the decryption tool can help recover data, it cannot prevent future attacks. Victims remain at risk of having their data sold or leaked. Additionally, Bitdefender advises users to review the company’s security recommendations, particularly strengthening BitLocker settings, to reduce the chances of future attacks.
Source https://www.theregister.com/2024/11/14/shrinklocker_ransomware_decryptor/