A decryption tool has been made available to the hundreds of companies affected by REvil’s hack of US software company Kaseya earlier this month.
Kaseya said it had received the universal decryption tool from a “trusted third party” and had it validated by an outside firm.
REvil launched an attack on Kaseya on 2 July, exploiting a zero-day vulnerability in the Kaseya VSA remote management application.
It succeeded in encrypting the systems of dozens of managed service providers and an estimated 800 to 1,500 businesses.
Five hundred Swedish Coop supermarkets were forced to close after their cash registers, operated by an affected service provider, stopped functioning, and 11 schools in New Zealand were also involved in the disruption.
The REvil ransomware gang demanded $70 million (£51m) in Bitcoin for a universal decryptor and smaller amounts for more limited fixes.
But the gang mysteriously disappeared from the internet soon afterward, shutting down its payment infrastructure so that organisations couldn’t buy a fix even if they had wanted to.
Kaseya said it is distributing the decryptor tool to those affected, but said it couldn’t disclose the source.
New Zealand-based computer security firm Emsisoft said it was the company that had validated the tool and is aiding Kaseya in its recovery efforts.
Kaseya declined to comment to Bleeping Computer on whether it had paid a ransom for the decryptor.
Diplomatic pressure exerted by the US on Russia, where REvil is believed to be based, may have contributed to REvil’s disappearance and to the decryptor being supplied.
The tool was voluntarily given away by a “trusted partner” of REvil on behalf of the group’s leader, who calls himself “Unknown”, the BBC reported, citing a hacker who claims to belong to REvil’s inner circle.
The hacker said the gesture was part of a “new beginning”.
REvil has previously disappeared and reappeared in other forms, and its recent suspension of activities is unlikely to be permanent.
CMA receives 'provisional recommendation' from independent inquiry that Apple,Google mobile ecosystem needs investigation
Government minister flatly rejects Elon Musk's “unsurprising” allegation that Australian government seeks control of Internet…
Northvolt files for Chapter 11 bankruptcy protection in the United States, and CEO and co-founder…
Targetting AWS, Microsoft? British competition regulator soon to announce “behavioural” remedies for cloud sector
Move to Elon Musk rival. Former senior executive at X joins Sam Altman's venture formerly…
Bitcoin price rises towards $100,000, amid investor optimism of friendlier US regulatory landscape under Donald…