Last week, the SynAck ransomware gang released the master decryption keys to allow victims to decrypt their files for free. The gang has now rebranded as the new El_Cometa group.
The master decryption keys work for victims that were infected between July 2017 and early 2021.
“The leaked keys were provided to The Record earlier today by an individual who identified themselves as a member of the former SynAck group.” reads the post published by The Record website. “The keys have been verified as authentic by Michael Gillespie, a malware analyst at security firm Emsisoft and the creator of the ID-Ransomware service.”
The SynAck gang also released a manual on how to use the master keys.
The SynAck group has been active since 2017 and at the end of July 2021, the group launched El_Cometa ransomware-as-a-service (RaaS). SynAck is the second ransomware gang that recently released its decryption keys after the Avaddon operation.
News of the day is that Emsisoft has released a SynAck ransomware decryptor that works with all variants and allows victims to recover their files for free.
The use of the decryptor is simple, the user has could determine the decryption key after providing the ransom note.
The decryptor requires access to the internet in order to retrieve the victim’s key. The decryptor is available here, along with a guide to use it.
(SecurityAffairs – hacking, SynAck)