Have you been hit by LockerGoga ransomware? A free fix is ​​now available • The Register

If you’ve been hit by LockerGoga ransomware, international law enforcement agencies have released a tool to fix the problem.

LockerGoga is the nasty Windows software behind the 2019 infection Norsk Hydro which shut down the Norwegian energy and metals giant’s global network for a week and cost the company over $100 million, not to mention the knock-on effects further down the supply chain.

Files with the “.locked” extension are an indicator that LockerGoga has encrypted your documents and can be recovered without paying, according to Bitdefender, which has collaborated with Europol, Zurich law enforcement and the NoMoreRansom project on the now-available decryption tool.

The security biz also released one Step by step guide [PDF] for using the decryptor on individual PCs and networked computers.

In addition to pushing the Decryptor tool, the Zurich law enforcement agency published details on criminal proceedings against a rogue they accused of being part of a cybercrime gang that used LockerGoga and MegaCortext ransomware to infect computers used by more than 1,800 people and organizations in 71 countries and damages estimated at caused hundreds of millions of dollars.

The alleged perpetrator was arrested by Swiss authorities in October 2021 on suspicion of money laundering and data corruption. His arrest was part of a larger Europol and agency for judicial cooperation in criminal matters (Eurojust) effort in which 12 suspected cybercriminals were arrested and involved law enforcement agencies from France, the Netherlands, Norway, Ukraine, the US and Switzerland.

Since then, the cyber team of the Zurich police evaluate Evidence seized during the suspect’s home search, and that investigation revealed “numerous private keys from ransomware attacks,” we’re told.

These keys have helped some of the affected companies recover their data previously encrypted by LockerGoga or MegaCortex Ransomware and also led to the release of the LockerGoga decryptor.

According to Zurich law enforcement agencies, a similar tool designed to help MegaCortex victims decrypt their files will be released “soon”.

MegaCortex, which also first appeared in 2019, includes a signed Windows executable as part of the payload and was previously said to be targeting enterprises research published by TrendMicro.

In the meantime, this lucrative breed of cybercrime shows no signs of slowing down as ransomware gangs plummet to new lows — they hit schools and hospitalsamong other victims – in recent weeks.

According to Verizon’s 2022 Data Breach Investigations Report released in May ransomware made up 25 percent of observed security incidents that occurred between November 1, 2020 and October 31, 2021 and was present in 70 percent of all malware infections.

Ransomware outbreaks grew 13 percent year over year, a larger increase than the previous five years combined, the report’s authors found. ®

https://www.theregister.com/2022/09/19/lockergoga_ransomware_decryptor/ Have you been hit by LockerGoga ransomware? A free fix is ​​now available • The Register

Laura Coffey

World Time Todays is an automatic aggregator of the all world’s media. In each content, the hyperlink to the primary source is specified. All trademarks belong to their rightful owners, all materials to their authors. If you are the owner of the content and do not want us to publish your materials, please contact us by email – admin@worldtimetodays.com. The content will be deleted within 24 hours.

Related Articles

Back to top button