Skip to main content
  1. Home
  2. Computing
  3. News

Kaspersky, police fighting ransomware with freely downloadable tool

Add as a preferred source on Google

No good can come out of your computer being infected by malware, but there are varying levels of bad. Having your data held hostage by an anonymous hacker unless you pay an exorbitant fee? That scores pretty high on the bad scale.

The term for this type of malware is ransomware, and currently CoinVault is the most notorious example. Usually installed by way of a compromised website or a phishing email, CoinVault goes a step further than other ransomware and actually shows its victims a list of files and even decrypts one for free, like sending out a hostage in a standoff.

Recommended Videos

It may sound like the only hope is to pay up and hope you get your files back, but Kaspersky Lab and the National High Tech Crime Unit (NHTCU) of the Dutch police are fighting back. The NHTCU recently acquired a database of CoinVault keys, and Kaspersky has used this database to build a tool to generate CoinVault decryption keys, according to PCWorld.

The tool, simply called “Ransomware Decryptor” is freely downloadable from Kaspersky. While it isn’t 100 percent effective, police are hoping to obtain new keys as the investigation into CoinVault continues. It is hoped that this will help to improve the software, said Kaspersky researcher Jornt van der Wiel.

CoinVault has been infecting Windows computers since November of last year, and while the investigation into those behind it is advancing, computer users are still regularly having their data held hostage by the malware. Police are encouraging those hit by ransomware to contact them, as individual reports have led to the discovery of keys, and even to a lead on a suspect.

If you have friends or relatives who don’t know the dangers of clicking links in strange emails (and don’t we all?), it’s probably worth downloading the tool from Kaspersky and keeping it on hand, just in case.

Kris Wouk
Former Contributor
Kris Wouk is a tech writer, gadget reviewer, blogger, and whatever it's called when someone makes videos for the web. In his…
macOS clipboard app Maccy has a fake out there stealing passwords
PamStealer malware is disguising itself as Maccy to target Mac users
Depicting of the Maccy clipboard app for macOS on a laptop with letters inb the background.

A fake version of Maccy, a popular clipboard manager for macOS, is being used to deliver a newly discovered Mac malware strain called PamStealer. Researchers at Jamf say the malware impersonates the real open-source app, but its actual purpose is to steal data and capture a victim’s login password.

PamStealer arrives as a disk image containing an AppleScript file that impersonates Maccy. Once the user opens that file, macOS launches it in Script Editor, where the on-screen instructions tell them to press Command-R. To someone expecting a normal app installer, that may look like an odd setup step. In reality, that action runs hidden malware code and starts the attack.

Read more
A new technology teaching drones to feel pain could stop your self-driving car from harming itself
Drones first, autonomous cars next. A pain-sensing system that detects failure before it happens has real stakes for self-driving vehicles.
Transportation, Vehicle, Car

When you sprain your ankle in the middle of a run, your body sends a pain signal to your brain, forcing you to stop. Essentially, the ability to sense pain stops you from pushing through the injury and causing further self-harm.

Researchers at Delft University of Technology and Wageningen University have applied this exact concept to drones, giving them a digital equivalent of a nervous system that recognizes a faulty part and triggers a pain-like warning signal. What's even more interesting is that the technology could find use in self-driving cars.

Read more
Claude Fable 5 is leaving subscriptions, but maybe not for good
High demand is pushing Claude Fable 5 out of subscriptions for now
Claude Fable 5 and Claude Mythos 5 Official Render

Anthropic’s most advanced publicly available Claude model is still leaving standard subscription access after July 7, but the company is now trying to calm fears that the move is permanent.

Fable 5 recently returned to Claude after drawing scrutiny from the U.S. government. Anthropic said it would be included on Pro, Max, Team, and select Enterprise plans for up to 50% of weekly usage limits through July 7. After that date, the model is set to move to usage-credit billing, meaning users will pay for access outside their regular plan limits.

Read more