"Vect is being marketed as ransomware, but for any file over 128KB, which is most of what enterprises actually care about, it functions as a data destruction tool."
"CISOs need to understand that in a Vect incident, paying is not a recovery strategy. There is no decryptor that can be handed over, not because the attackers are unwilling, but because the information required to build one was destroyed the moment their software ran."
Vect ransomware, in partnership with TeamPCP and BreachForums, has a critical flaw that turns it into a data wiper for files over 128KB. Analysts found that it permanently discards the information needed for decryption, rendering traditional ransomware recovery strategies ineffective. This means that even if victims pay the ransom, they cannot receive a working decryptor. The focus for organizations should shift to resilience and offline backups, as paying the ransom will not lead to file recovery.
Read at ComputerWeekly.com
Unable to calculate read time
Collection
[
|
...
]