Regarding Sicarii’s broken decryption process, researchers said that “during execution, the malware regenerates a new RSA key pair locally, uses the newly generated key material for encryption, and then discards the private key.”
Even if the malware author did correct the issue, it’s unknown whether those already compromised can benefit, or if they’re out of luck.
They literally said the private key was discarded. It’s absolutely known whether those already compromised can benefit. They can’t.
Ransomware that can’t be decrypted is just destructive malware like any other.
I bet other ransomware creators hate this. If victims can’t even get their data back by paying, more victims will stop paying across the board.
LMAO
Hebrew-based content appears machine-translated
Did they vibe code their false identity as well?
Like a virus that kills the host, it won’t spread as well and should die out faster than other types of maleware.
rofl of course…
So they basically created a hashing function?
A hash is at least consistent when given identical inputs. What they created is more like a digital incinerator.
