HelloKitty ransomware behind CD Projekt Red attack

More details has come to light-weight regarding the ransomware attack that struck the producers of Cyberpunk 2077. Polish video clip recreation developer CD Projekt Pink unveiled the ransomware notice it had been given, which bears all the hallmarks of being distributed by the ransomware group known as, “HelloKitty.”

Previously this week, CD Projekt unveiled that an unidentified actor acquired access to its inner network and encrypted a range of its information. It did reassure avid gamers, having said that, that backup sources remained unaffected and that it was presently in the procedure of restoring the afflicted knowledge.  

The ransomware notice contained all the common rhetoric, informing CD Projekt that it had been “EPICALLY pwned” and threatening to leak resource codes online. Nonetheless, CD Projekt swiftly responded by confirming that it would not give in to the ransom needs and had knowledgeable the related law enforcement officers of the incident.

Noting the similarities

Primarily based on the ransom notice, Fabian Wosar, Main Engineering Officer at anti-malware business Emsisoft, thinks that the ransomware is probable to have been implemented by the HelloKitty group. There is not much too considerably details offered about mentioned group but they are believed to have targeted other massive businesses previously, including Brazilian electrical power business CEMIG in December previous yr.

The HelloKitty malware disables several processes and providers just before encrypting information on a victim’s machine. Ordinarily, the ransom notice that accompanies this attack is titled, “’read_me_unlock.txt,” which is the same name that accompanied the CD Projekt ransomware strain.

Ransomware attacks have turn out to be an more and more well-known method of extorting dollars, with cyberattackers thieving delicate details that pertains to core business processes or which could destruction a particular corporate unique. Often, when ransomware strains are poorly made, information can be restored devoid of possessing to fork out a ransom rate. Nonetheless, the early indications are that there is no way of decrypting information afflicted by the HelloKitty malware for no cost.

Through Bleeping Personal computer