Kaspersky Has Released A New Decryption Tool Against Conti Ransomware Modification.

Kaspersky has released a new decryption tool against Conti Ransomware Modification.

Kaspersky has released a new version of a decryption tool that assists victims of a ransomware modification based on previously leaked Conti source code. Conti is a ransomware gang that emerged in 2019 and has been active in the cybercrime scene since, with its source code being leaked in March 2022 following an internal conflict triggered by geopolitical tensions in Europe. The discovered modification was distributed by an unknown ransomware group and used against companies and government institutions.

In late February 2023, Kaspersky experts uncovered a new section of leaked data posted on forums. After analyzing the data, which included 258 private keys, source code, and precompiled decryptors, Kaspersky released a new version of its decryption tool to help victims of this Conti ransomware modification.

Conti ransomware initially emerged in late 2019 and was highly active throughout 2020, affecting over 13% of all ransomware victims during that period. However, after the source code was leaked a year ago, various criminal groups created different modifications of Conti ransomware and utilized them in their attacks.

The leaked private keys for this malicious software variant were discovered by Kaspersky experts in December 2022. This type of ransomware has been used in numerous attacks against businesses and government institutions.

Among the 257 folders containing the leaked private keys, 14 specify the names of specific companies and government agencies. Assuming each folder represents a victim and the decryptors were created for paying victims, it can be inferred that 14 of the 257 folders belong to victims who paid the attackers.

After analyzing the data, experts released a new version of the decryption tool to assist victims of this Conti ransomware variation. The decryption code and all 258 keys were incorporated into Kaspersky’s RakhniDecryptor 1.40.0.00 tool. Additionally, the decryption tool was added to Kaspersky’s No Ransom website (https://noransom.kaspersky.com).

Fedor Sinitsyn, Chief Malware Analyst at Kaspersky, stated, “Ransomware has remained a significant tool used by cybercriminals for several years in a row. However, as we’ve examined the tactics, techniques, and procedures (TTPs) of different ransomware gangs and found that many operate in similar ways, it becomes easier to prevent these attacks. A decryption tool for a new Conti-based variation is already available on our No Ransom website. Nonetheless, we emphasize that the best strategy is to strengthen defense, stop attackers in the early stages of an attack, prevent ransomware distribution, and minimize the consequences of an attack.”

To protect yourself and your business from ransomware attacks, Kaspersky experts offer the following recommendations:

  1. Avoid opening remote desktop services (such as RDP) to the public internet unless absolutely necessary, and always use strong passwords for them.
  2. Immediately apply available patches for commercial VPN solutions that provide remote access for remote workers and serve as gateways in your network.
  3. Focus your defense strategy on detecting lateral movements and data leakage to the internet. Pay particular attention to outbound traffic to identify connections made by cybercriminals.
  4. Regularly back up your data, ensuring quick access in case of an emergency.
  5. Use solutions like Kaspersky Endpoint Detection and Response Expert and Kaspersky Managed Detection and Response to detect and stop attacks in their early stages before threat actors achieve their ultimate goals.
  6. Stay informed about real TTPs (Tactics, Techniques, and Procedures) used by threat actors by using the latest Threat Intelligence information. Kaspersky Threat Intelligence Portal provides a single access point to 25 years of cyberattack data and insights collected by their team. Kaspersky offers free access to independent, continuously updated, and globally sourced information to help businesses defend against ongoing cyberattacks and threats.

About Kaspersky:

Kaspersky is a global cybersecurity and digital privacy company established in 1997. Kaspersky’s deep threat intelligence and security expertise continuously evolve to provide innovative solutions and services for protecting businesses, critical infrastructure, governments, and consumers worldwide. The company’s comprehensive security portfolio includes leading-edge endpoint protection, specialized security products and services, and Cyber Immunity solutions to combat advanced and emerging digital threats. Kaspersky technology protects over 400 million users and helps more than 220,000 corporate clients protect what matters most to them. Learn more at www.kaspersky.com.


The Excitement Of The National Match Will Be Experienced At Vestel Amfi!
The Excitement of the National Match Will Be Experienced at Vestel Amfi!
Pınar Deniz Magnum Special Invitation Pursue Pleasure “haz Peşindeysen”
Pınar Deniz – Magnum Special Invitation – “Pursue Pleasure” “Haz Peşindeysen”
Would You Like To Lose Weight While Sitting Down Yelda Başaran
Would you like to lose weight while sitting down? Yelda Başaran
I Was Asking The Questions 'why, For What Reason, How' Very Often Special Interview With Eray Emin Aydemir And Eylül Aşkın
I was asking the questions ‘why, for what reason, how?’ very often – Special interview with Eray Emin Aydemir and Eylül Aşkın
Power Of Literature At Evolution Art Gallery Book Signing Event For Nesrin Dosdoğru's 'hide And Seek With Fathers'
Power of Literature at Evolution Art Gallery: Book Signing Event for Nesrin Dosdoğru’s ‘Hide and Seek with Fathers’
Meeting Of Young Art In Denizculture And Gallery Deniz 85 Works Of 48 Artists Are Being Exhibited
Meeting of Young Art in DenizCulture and Gallery Deniz: 85 Works of 48 Artists are Being Exhibited
Fashion And Comfort Meet Come As You Are
Fashion and Comfort Meet: Come As You Are
The Evolution Of Art Episode 18 Lawyer Serra Taşköprü, Günsu Saraçoğlu Evolution Art, Mikado Communication
The Evolution of Art Episode 18 – Lawyer Serra Taşköprü, Günsu Saraçoğlu – Evolution Art, Mikado Communication
An Exciting Exhibition At Red Art In Istanbul Lunatic Asylum
An Exciting Exhibition at RED ART in Istanbul: Lunatic Asylum
Ai Supported Recruitment Biases And Solutions
AI-Supported Recruitment: Biases and Solutions
Yed I Sevda Concert Young Talents And Master Artists Shared The Same Stage
Yed-i Sevda Concert: Young Talents and Master Artists Shared the Same Stage
Contemporary Suseven, Who Is In The Spotlight With His Latest Single Broken Guitar, With Eylül Aşkın... Exclusive Interview
Çağdaş Suseven, who is in the spotlight with his latest single “Broken Guitar,” with Eylül Aşkın… Exclusive Interview
Günsu Saraçoğlu's Rebirth Collection Can Be Visited Until July 4th
Günsu Saraçoğlu’s “ReBirth” Collection Can Be Visited Until July 4th
The Evolution Of Art Episode 17 Günsu Saraçoğlu, Eylül Aşkın Evolution Art, Mikado Communications
The Evolution of Art Episode 17 – Günsu Saraçoğlu, Eylül Aşkın – Evolution Art, Mikado Communications
Turkey's Alpet Is Now Brand New Çiğdem Yorgancıoğlu Impression
Turkey’s Alpet Is Now Brand New – Çiğdem Yorgancıoğlu Impression
Erkan Ulu Schools' Young Philosopher Awards 2024 Competition Results Announced Here Are The Winners!
Erkan Ulu Schools’ Young Philosopher Awards 2024 Competition Results Announced: Here are the Winners!
The Corporate Governance And Sustainability Panel Will Take Place In Adana
The Corporate Governance and Sustainability Panel Will Take Place in Adana
Şahsenem Most Successful Artist Of Central Asia And Turkiye
Şahsenem “Most Successful Artist of Central Asia and Turkiye”
Rıdvan Akparlak I Think Popular Culture Has Hurt Us A Lot In Terms Of Music. Exclusive Interview With Eylül Aşkın
Rıdvan Akparlak: “I think popular culture has hurt us a lot in terms of music.” Exclusive Interview with Eylül Aşkın
The Evolution Of Art Episode 16 Ekrem Kahraman, Günsu Saraçoğlu Evrim Art, Mikado Communication
The Evolution of Art Episode 16 – Ekrem Kahraman, Günsu Saraçoğlu – Evrim Art
An Exhibition Dedicated To Virginia Woolf, A Room Of One's Own, Kendİne Aİt Bİr Oda
An exhibition dedicated to Virginia Woolf, “A Room of One’s Own”, “KENDİNE AİT BİR ODA”
Mikedi Aims To Introduce Turkish Culture To The World With The Lucky Charm Cat 3
Mikedi aims to introduce Turkish culture to the world with the Lucky Charm Cat
From The Pen Of Serra Taşköprü 'will You Lynch Me' 'beni LİnÇ Eder Misiniz
From the Pen of Serra Taşköprü: ‘Will You LYNCH Me?’ ‘Beni LİNÇ Eder misiniz?
Çiğdem Yorgancıoğlu Centennial Republic & Fairy Tales 4 Children
Çiğdem Yorgancıoğlu: Centennial Republic & Fairy Tales 4 Children
Following The Trail Of Cultural Diversity The 13th Edition Of The Sintesi Exhibition Has Begun!
Following the Trail of Cultural Diversity: The 13th Edition of the SINTESI Exhibition Has Begun!
Türkiye News Portal Logo
Turhapo Logo
Türkiye Haber Portalı Logo

INDEX URL LIST