Laura French reports:
A Rhysida ransomware decryption tool has been publicly released and detailed in a preprint paper by South Korean researchers Friday.
The Rhysida decryptor takes advantage of a vulnerability in the ransomware’s encryption process, enabling the process to be reverse engineered to recover files.
The researchers from Kookmin University and the Korea Internet & Security Agency (KISA) developed a method to predict the encryption keys generated by Rhysida as well as the order in which the malware encrypts files.
Read more at SC Media.