Your IT Consultant

Ransomware Resource: No More Ransom

July 28, 2022

It is crazy scary how fast ransomware attacks are growing. There are many things you should be doing to help prevent and recover from a ransomware attack. BleepingComputer discusses one of the resources you should have in your toolbox. The No More Ransom project is in its sixth year and has helped millions of victims recover by providing free decryption tools. No More Ransom was launched in 2016 and now includes 188 partners. Europol stated, “Six years later, No More Ransom offers 136 free tools for 165 ransomware variants, including Gandcrab, REvil/Sodinokibi, Maze/Egregor/Sekhmet and more.”

The Crypto Sheriff tool on the No More Ransom site can be used to see if there is a free decryptor available. You upload samples of encrypted files and/or details about the ransom demand (e.g. email, URL, ransom demand notification, etc.) to search for the available decryptors. Don’t be discouraged if a tool is not currently available as new unlock tools are regularly added. The post also gives some advice to lessen the impact of a ransomware attack.

• Regularly back up data stored on your electronic devices.
• Watch your clicks – do you know where a link will take you?
• Do not open attachments in e-mails from unknown senders, even if they look important and credible.
• Ensure that your security software and operating system are up to date.
• Use two-factor authentication (2FA) to protect your user accounts.
• Limit the possibility of exfiltrating large amounts of corporate data to external file exchange portals.
• If you become a victim, do not pay! Report the crime and check No More Ransom for decryption tools.

Email:   Phone: 703.359.0700
Digital Forensics/Cybersecurity/Information Technology
https://www.linkedin.com/in/johnsimek
https://amazon.com/author/johnsimek
https://senseient.com