Avaddon ransomware fixes free decryption flaw

Avaddon ransomware gang has fixed a flaw that allowed victims to recover their files without paying a ransom, which was discovered by Javier Yuste, a Ph.D. student at Rey Juan Carlos University, who published a decryptor for the Avaddon ransomware on his Github page and released a report describing the flaw through ArXiv. According to Yuste's research, when Avaddon ransomware encrypts the device, it creates a unique session key that is used for both encryption and decryption. That allowed the security researcher to create a decryptor that pulls a key from memory if the computer hasn't been turned off since the encryption. According to Avaddon ransomware devs, the flaw has been fixed, and the affiliate's revenue share has been increased up to 80% to compensate for the victims who managed to decrypt their files for free. Read more...