RansomEXX ransomware Linux encryptor may damage victims' files | Li...

Advisories

Discover Hacks/Cracks News

RansomEXX ransomware Linux encryptor may damage victims' files

RansomEXX ransomware Linux encryptor may damage victims' files

It has been discovered that the RansomExx ransomware gang does not correctly lock Linux files during encryption, leading to potentially corrupted files.

In a new report by Profero, Senior Incident Responder Brenton Morris says the RansomEXX decryptor was failing on various files encrypted by the threat actor's Linux Vmware ESXI encryptor for one the victims who paid the ransom.

After reverse-engineering the RansomExx Linux encryptor, Profero discovered that the problematic decryption was caused by Linux files not being adequately locked while they were encrypted.

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.