Linux Variant of Clop Ransomware Spotted, But Uses Faulty Encryption Algorithm
With a flawed encryption method that allowed for reverse engineering, the first-ever Linux form of the Clop ransomware has been found in the public.
In a report shared with The Hacker News, SentinelOne researcher Antonis Terefos stated that "the ELF executable features a faulty encryption scheme making it easy to decode encrypted files without paying the ransom."
The cybersecurity company, which has released a decryptor, reported observing the ELF version on December 26, 2022, and also noted that it is comparable to the Windows flavour in that it uses the same encryption technique.
The discovered sample is reportedly part of a broader attack against Colombian educational institutions read the complete article Linux Variant of Clop Ransomware Spotted, But Uses Faulty Encryption Al...