IT Pro is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission. Learn more

CryptoLocker victims offered free file decryption service

FireEye has teamed up with Fox-IT to unlock CryptoLocker victims' files for free

Data breach

Victims of the CryptoLocker ransomware have been thrown a virtual lifeline through the launch of a free service that lets users decrypt any files that have been maliciously locked down.

The CryptoLocker malware is designed to work in tandem with another piece of malicious software called GOZeus.

The latter is designed to lay dormant on a person's machine until it has the opportunity to capture their bank account details before sending them back to a botnet.

If no such opportunity arises, CryptoLocker is then activated and sets about encrypting the user's files without permission. A popup will then later appear to demand a payment of 200-300 to free the files.

As reported by IT Pro at the start of June, the pair were recently at the centre of an alert by the National Crime Agency (NCA) after it emerged that 15,000 UK citizens had been affected by them.

At the time, the NCA said computer users had a two-week window to protect themselves from the risk of malware infection, thanks to the combined effort of its own officers, the FBI, Europol and various ISPs.

Since then, the US Department of Justice has claimed the threat posed by the pieces of malware has now been neutralised, and work has now begun on clearing up the fallout from it.

As such, security vendor FireEye has teamed up with Fox-IT to bring to market DecryptCryptoLocker, a free service that aims to help victims regain access to their files.

Users simply need to pinpoint a file containing non-sensitive information that has been encrypted by the CryptoLocker malware, upload it to an online portal and then wait for a private key and download link to be sent to them.

The link will enable them to install a decryption tool that can be run locally on their computer that uses the key to unlock their files.

Darien Kindlund, director of threat intelligence at FireEye, said they hope the tool will be used by the thousands of business users that have been inconvenienced by CryptoLocker.

"No matter the type of cyber breach that a business is impacted by, it is our goal to resolve them and get organisations back to normal operations as quickly as possible," he said.

Andy Chandler, senior vice president of Fox-IT, added: "The criminals continue to push the boundaries; Fox-IT's InTELL team and FireEye have shared expertise and investment to deliver a free service that demonstrates there are plenty of good guys who are there to help those who are the victims of the criminals."

Featured Resources

Meeting the future of education with confidence

How the switch to digital learning has created an opportunity to meet the needs of every student, always

Free Download

The Total Economic Impact™ of IBM Cloud Pak® for Watson AIOps with Instana

Cost savings and business benefits

Free Download

The business value of the transformative mainframe

Modernising on the mainframe

Free Download

Technology reimagined

Why PCaaS is perfect for modern schools

Free Download

Most Popular

How to boot Windows 11 in Safe Mode
Microsoft Windows

How to boot Windows 11 in Safe Mode

7 Jun 2022
Attracting and retaining talent through training

Attracting and retaining talent through training

13 Jun 2022
Delivery firm Yodel disrupted by cyber attack
cyber attacks

Delivery firm Yodel disrupted by cyber attack

21 Jun 2022