Darkside is a new ransomware attack that started at the beginning of August 2020. It is supposedly run by former affiliates of other ransomware campaigns that extorted money who decided to come up with their own code. According to the known incidents, the ransom demanded falls in the range of between $200,000 and $2,000,000 (US).
Darkside is a new ransomware attack that started at the beginning of August 2020. It is supposedly run by former affiliates of other ransomware campaigns that extorted money who decided to come up with their own code. According to the known incidents, the ransom demanded falls in the range of between $200,000 and $2,000,000 (US).
Like other ransomware used in targeted attacks, Darkside not only encrypts the user’s data but also ex-filtrates data from the compromised servers.
A new tool was released on 12th January 2020 by security firm Bitdefender allows victims of the Darkside ransomware to recover their files without paying the ransom demand – and it’s free!
Active since the summer of 2020, the Darkside group launched and still operates today through ads posted on cybercrime forums.
The group uses a well-established Ransomware-as-a-Service (RaaS) model to partner with other cyber crime groups.
These groups would apply for the Darkside RaaS and receive a fully functional version of the Darkside ransomware. They would then breach companies using their own chosen methods, install the ransomware, and ask for huge payouts, usually in the realm of hundreds of thousands or millions of US dollars.
This modus operandi isn’t new, and it’s called “big-game hunting” because ransomware gangs usually tend to go after companies, instead of home users, in the hopes of increasing their profits.
In situations where victims didn’t want to pay, Darkside operators leak documents they stole from the victim’s network on a dedicated “leak site,” as a form of punishment and forwarning to other victims who may want to restore from backups instead of paying the crooks.
First and foremost, the tool helps companies recover important files that were encrypted months before and which they weren’t able to restore but still have around, saved on backup drives.
Second, the tool also incurs operational costs to the Darkside gang, which will now have to re-do all its file encryption code to prevent free decryptions.
Third, the tool also deals a major reputational blow to the Darkside RaaS. Many ransomware operations have shut down in the past after the release of a free decrypter, as most of their customers abandoned them for newer and non-decryptable competitors.
As for the victims themselves, the good news is that the free decrypter released by Bitdefender should, in theory, work for all recent versions of the Darkside ransomware, regardless of the file extension that crooks added at the end of each encrypted file.
Business owners often have to wear many hats, from handling HR and marketing tasks to managing the finances. One task…
Cool Windows 11 Features That May Make You Love This OS
Microsoft released the Windows 11 operating system (OS) over a year ago. It was well-received mainly with reviews as stable…
6 Ways to Prevent Misconfiguration (the Main Cause of Cloud Breaches)
Misconfiguration of cloud solutions is often overlooked when companies plan cybersecurity strategies. Cloud apps are typically quick and easy to…
4 Proven Ways to Mitigate the Costs of a Data Breach
No business wants to suffer a data breach, but unfortunately, it’s difficult to avoid them in today’s environment. Approximately 83%…
The benefits of AI include advancing our technology, improving business operations, and much more. Adoption of AI has more than doubled…
Leading Password Managers for Personal and Business
We hope that your business is already considering a password manager system, but there’s still the matter of finding the…
What’s Changing in the Cybersecurity Insurance Market?
Cybersecurity insurance is still a pretty new concept for many SMBs. It was initially introduced in the 1990s to provide coverage for large enterprises. It covered things like data processing errors and online media.
What are the advantages of implementing Conditional Access?
It seems that nearly as long as passwords have been around, they’ve been a major source of security concern. Eighty-one…
Outsourcing Managed IT Services
10 Advantages Are you a business owner overwhelmed with managing your IT needs in house? Have you considered the advantages…
Fully Managed IT Services and The Benefits to You
Streamline Your Business and Stay Ahead In today’s competitive business landscape, staying ahead requires more than keeping up with the…
IT Support and Maintenance Essential Tips
Ensuring effective IT support and maintenance is paramount in today’s technology-driven world. However, with the eve, keeping up with the…
IT MSP in London – A Guide to Choosing the Best for your Business
Are you a business owner in London in need of reliable IT support? Look no further! In this post, we’ll…
Information Technology Specialist for IT Support
In today’s fast-paced digital world, businesses rely heavily on technology to drive their operations and achieve their goals. As a…
24/7 IT Services in London to Keep Your Business Secure
The Benefits of 24/7 IT Services in London In the bustling business hub of London, having access to 24/7 IT…
Penetration Testing in Today’s Digital Age and it’s Importance
In today’s digital age, where cyber threats lurk around every corner, ensuring the security of your organisation’s digital assets is…
Unlock the Full Potential of Microsoft 365 for Your Business
Microsoft 365 is a comprehensive suite that enhances productivity and collaboration, particularly for small and medium-sized enterprises (SMEs). However, many…