Kaspersky has decoded a flaw in the encryption of Yanluowang ransomware that can assist victims recover lost files without the attackers'' key. The vulnerability in the malware has led Kaspersky to analyze and detect the issue while providing a customer-friendly solution with a free decryption tool.
The Russian security agency discussed how to restore files attacked by Yanluowang ransomware in a post. Apart from basic safety measures, advanced software, adequate protection, and cybersecurity training, users may take additional precautions to keep the malware away from damaging their systems.
Kaspersky has issued a few clear measures to protect users from future attacks. It recommends keeping an eye on outgoing traffic and highlight any suspicious connections detected, and perform regular and timely cybersecurity audits. This can also assist victims.
Kaspersky advises that all SOC employees be trained for cyberthreat data and ask for help from third-party experts as and when necessary.