Administrators of Web servers that were infected with a recently released ransomware program for Linux are in luck: There's now a free tool that can decrypt their files.
The tool was created by malware researchers from antivirus firm Bitdefender, who found a major flaw in how the Linux.Encoder.1 ransomware uses encryption.
The [ransomware] program makes files unreadable by using the Advanced Encryption Standard (AES), which uses the same key for both the encryption and decryption operations. The AES key is then encrypted too by using RSA, an asymmetric encryption algorithm.
(Score: 2) by frojack on Wednesday November 11 2015, @07:42AM
And there are still few theories as to how this thing got installed in the first place
No, you are mistaken. I've always had this sig.
(Score: 0) by Anonymous Coward on Wednesday November 11 2015, @09:02AM
Classic Bitcoin scam.
The servers got "hacked" and now the users of the server are out Bitcoins.
Note the scare quotes imply the story is dubius, but hard to prove false (since you can't track the coins until they are spent again).