Say “No More!” to ransomware once more

News Special Projects

One soldier does not make a battle, especially in the world of cyber-crime, where hidden dangers lurk in the depths of the darknet and occasionally appear topside. There are a lot of cyber-criminals on Earth but, for the most part, are not well organised. Cyber-security experts are no fewer in number — and they can unite around a common purpose to achieve greater results, catch bad guys, and help victims. Basically, that is how the No More Ransom project was born.

The initiative is under nonstop development. As a result we have more good news to share today: Our antiransomware project was joined by new allies. They have contributed support and new decryption tools. The project’s website has also been translated into several new languages.

In July 2016, four co-founders created No More Ransom: Kaspersky Lab, Europol, Intel Security, and the Dutch police. We joined forces to create a platform that could bring real help to ransomware victims — and to all Internet users. We gathered useful tools and manuals, and uploaded them to the website to help either mitigate the results of ransomware attack or to prevent those attacks.

Since the launch, dozens of organizations from all over the world supported the initiative. Even more partners joined today. New from the law enforcement side are Australia, Belgium, Interpol, Israel, South Korea, Russia, and Ukraine. Others are Acronis International GmbH, Crowdstrike, Cyber Security Canada, DataGravity, Deloitte, ENISA, the Global Cyber Alliance (GCA), the Japan Cyber Control Centre (JC3), KUERT Datenrettung Deutschland GmbH, KÜRT Data Recovery and Information Security Co., mnemonic AS, Neutrino srl, Portugal Telecom, Secura Group Limited, SentinelOne, and Verizon Enterprise Solutions. The CERT community — represented by AfricaCERT, BA-CSIRT (CSIRT of Buenos Aires City Government), Centro Nacional de Cibersegurança, Certego Incident Response Team, Cybersecurity Malaysia, and the Japan Computer Emergency Response Team Coordination Center (JPCERTCC) — also contributes strong support.

Some partners brought gifts: Thanks to our new associate partners AVAST, CERT Polska, and Eleven Paths (Telefonica’s Cyber Security Unit), and existing partners Bitdefender, Check Point, and Emsisoft we have 15 more decryption tools on No More Ransom. Good job! It’s also noteworthy that Kaspersky Lab updated Rakhni and Rannoh Decryptors, which were already available on the site to make them even more effective against ransomware. Altogether, the nomoreransom platform now offers 39 decryption tools, all completely free of charge.

There’s yet more good news. Knowledge is power, but in the digital age it’s a kind of ‘superpower’. To make sure that as many users as possible have access to the helpful tools on No More Ransom, we’ve translated the site into eight more languages: German, Spanish, Slovenian, Finnish, Hebrew, Ukrainian, Korean, and Japanese. So now the project’s website is available in 14 languages. More translations are expected to come soon to assist victims across the globe.

Every day we encounter thousands of malicious samples that are related to ransomware. They include but are not limited to malicious executable files, script downloaders, and documents with harmful macros. For common users, malicious files look just like legitimate ones, so it’s no wonder many people become ransomware victims both at work and at home. Since our last report back in December, more than 10,000 victims have decrypted their files without resorting to paying the ransom. Result!  Most of the site visitors were from Russia, the Netherlands, the United States, Italy, and Germany.

You don’t have to be a cybersecurity expert to fight ransomware; tell your friends and family about the No More Ransom website. If people in your life neglect basic cybersecurity, you can explain to them how much is at risk: their personal photos, memorable videos, computer game save files, documents from work, and real money.

If you yourself feel that you don’t know enough about ransomware, check out our blog posts and related articles on nomoreransom.org — and, if you prefer more interactive content, take this quiz. And be safe!