Clop Ransomware Flaw Allowed Linux Victims to Recover Files for Months
1 min read
Feb 07, 2023
The Clop ransomware gang is now also using a malware variant that explicitly targets Linux servers, but a flaw in the encryption scheme has allowed victims to quietly recover their files for free for months.
This new Linux version of Clop was spotted in December 2022 by Antonis Terefos, a researcher at SentinelLabs, after the threat group used it together with the Windows variant in an attack against a university in Colombia.
While very similar to the Windows version, as they both use the same encryption method and almost identical process logic, there still are some differences, mainly limited to OS API calls and features still waiting to be implemented in the Linux variant.
Related Articles
1 - 0 min read
Top Reasons to Use Linux Over Windows
1 - 0 min read
Linux Kernel 6.7 Released with Various Security Improvements
1 - 0 min read
Joomla XSS Bug Puts Millions of Websites at Risk of RCE
1 - 0 min read
RunC Container Escape Flaws Grant Attackers Host Access
