Ransomware Victim Hacks Back

A victim of a new ransomware strain hacked the attackers and released 2,858 decryption keys, as well as a free decryptor. The ransomware called Muhstik (based on the appended extension) has been active since late September, brute-force attacking network-attached storage (NAS) devices made by QNAP. German software developer, Tobias Frömel, after paying the ransom himself, analysed the ransomware, hacked the attacker's command and control server, retrieved decryption keys and started notifying the victims, urging them not to pay. He also notified authorities in hope of helping them track down the hackers.

Author image

About Ariadna Pawluk

Cybersecurity enthusiast, hunting all the freshest news, insights and tidbits.