German Programmer ‘Hacks Back’ After Bitcoin Ransomware Attack
Marie Huillet's original article for cointelegraph.com reduced by 51%
German programmer Tobias Frömel has "Hacked back" the perpetrators of the Muhstik ransomware who forced him to pay 0.09 Bitcoin to recover access to his files. In a Bleeping Computer forum post on Oct. 7, Frömel revealed that he had hacked the attackers' database, sharing almost 3,000 decryption keys and a free decryptor with fellow victims.
Bleeping Computer previously reported that publicly exposed QNAP NAS devices have been targeted by ransomware dubbed Muhstik. The attackers extorted a fixed "Fee" of 0.09 Bitcoin - roughly $740 at press time - from victims to recover access to their data via decryption keys. Having himself paid €670 to the Muhstik perpetrators, Frömel hacked back their command and control server.
Victims have since confirmed in BleepingComputer's Muhstik support and help forum that the HWIDs are accurate and that the decryptor works. Since Frömel's work, anti-virus firm Emsisoft has released decryption software for victims running ARM-based QNAP devices, which reportedly were not supported in Frömel's release.
Donate Bitcoin to this address
Scan the QR code or copy the address below into your wallet to send Bitcoin
Donate Ethereum to this address
Scan the QR code or copy the address below into your wallet to send Ethereum
Donate With MetaMask
Donate ETH With MetaMask
Alternatively, support us by using the following referral links:
CN [too long; didn’t read]
Summarised crypto news.