Rhysida ransomware, known for its double extortion tactic, uses a cryptographically secure pseudo-random number generator (CSPRNG) based on the ChaCha20 algorithm to generate encryption keys. Researchers were able to decrypt the ransomware and recover data without paying a ransom.
- Rhysida ransomware uses a double extortion tactic to pressure victims into paying by threatening to release stolen data.
- The ransomware uses a cryptographically secure pseudo-random number generator (CSPRNG) based on the ChaCha20 algorithm to generate encryption keys.
- Researchers were able to decrypt the ransomware and recover data without paying a ransom.