1 min read

Presumed GoldenEye hackers surface online demanding $260,000 for decryption keys

Filip TRUȚĂ

July 06, 2017

Presumed GoldenEye hackers surface online demanding $260,000 for decryption keys

The hackers behind the GoldenEye/Petya ransomware gave the first signs of life since the outbreak by posting new ransom demands, along with a signature for the malware’s private key, as evidence that they are the ones behind the June 27 attack. Their new demands? 100 Bitcoins worth $258,000.

Around 10 PM (UTC) yesterday, the roughly $10,000 in the bitcoin wallet associated with GoldenEye was moved to a different wallet. Two small donations were also made to the bitcoin wallets of Pastebin and DeepPaste, sites hackers use to make anonymous announcements.

According to separate sources who verified the identity of the authors, the hackers” new demand is now 100 BTC in exchange for the decryption key to unlock files encrypted by the GoldenEye/Petya ransomware.

In an interview conducted on a Dark Web chatroom with the presumed hackers, the guys at Motherboard learned that the demand was so steep because the key was allegedly capable of decrypting “all computers” infected with GoldenEye/Petya. The key, however, would not decrypt entire hard drives, as the ransomware used a separate key for entire-volume encryption, to prevent infected systems from booting their OS.

Experts believe the 100 Bitcoin demand is an attempt at further confusing the media, and cybersecurity firms, deflecting attention from what is believed to be a state-sponsored attack.

The consensus among security researchers is that GoldenEye/Petya was merely “dressed up” as ransomware, when the real purpose was to wipe data and cause havoc.

tags


Author



Right now

Top posts

Ultimate Privacy Guide for Your Facebook Account

Ultimate Privacy Guide for Your Facebook Account

August 31, 2021

6 min read
7 Signs It’s Time to Use Parental Controls On Your Family’s Devices

7 Signs It’s Time to Use Parental Controls On Your Family’s Devices

August 27, 2021

2 min read
Your Netflix Account May Be on Sale on Darkweb. Protect It

Your Netflix Account May Be on Sale on Darkweb. Protect It

August 13, 2021

3 min read
E-mails claiming your computer was hacked and your privacy exposed - what you need to know (spoiler: you can relax - they’re bluffing)

E-mails claiming your computer was hacked and your privacy exposed - what you need to know (spoiler: you can relax - they’re bluffing)

July 29, 2021

5 min read
Watch Out for These Ongoing Bank of America Phishing Campaigns Targeting Customers in the US

Watch Out for These Ongoing Bank of America Phishing Campaigns Targeting Customers in the US

July 16, 2021

3 min read
How to protect yourself against cyberstalking

How to protect yourself against cyberstalking

July 06, 2021

2 min read

FOLLOW US ON

SOCIAL MEDIA


You might also like

Microsoft Drops Password Authentication for Most Products Microsoft Drops Password Authentication for Most Products
Silviu STAHIE

September 16, 2021

1 min read
Apple Rolls Out Urgent Patch for Zero-Day Flaws in iOS, macOS and watchOS Apple Rolls Out Urgent Patch for Zero-Day Flaws in iOS, macOS and watchOS
Filip TRUȚĂ

September 14, 2021

2 min read
WhatsApp Users Get Option to Encrypt Backups WhatsApp Users Get Option to Encrypt Backups
Silviu STAHIE

September 13, 2021

1 min read