Submit a DeadBolt Encrypted File (25MB Max) with a '.Deadbolt' Extension & Get a Free Decryption Key @ Responders.NU

310

Go to Deal

jizmo on 25/10/2022 - 20:44 deadbolt.responders.nu (454 clicks)
Last edited 26/10/2022 - 11:07 by 1 other user

Dutch police and other law enforcement agencies have managed to trick the DeadBolt ransomware operators into releasing 150 decryption keys for free.

The method of obtaining decryption keys was found by a Dutch incident response company called Responders.NU, who shared the method with the police. The basis for the trick iss that it was possible to cancel an unconfirmed Bitcoin transaction before payment went through through, but after the decryption key was released.

Decryption keys
The police wanted to emphasize that it is always important to file a complaint about cybercrime, even though the chances of apprehending the cybercriminals may seem slim. So they started by helping victims, from 13 countries, who had filed a complaint with their local police.

Most of the victims who they helped should have received instructions on how to access their personal decryption key by now.

If you have not been notified by the police but you still want to check if you are one of the lucky ones, you can follow the instructions on the site deadbolt.responders.nu and find out if your decryption key is available.

Related Stores

Responders.NU

ASUSTOR

Europol

QNAP

Show all 5 stores

The Netherlands Police

• 

  heyimsu on 25/10/2022 - 20:47

  +26

  Uh what?

  • 

    HaventAKalou on 25/10/2022 - 20:54

    +9

    deadbolt is ransomware - a virus that locks your computer from use, and you can only get the key to unlock it by paying a ransom to whoever locked your computer.

    i guess the dutch police managed to get some keys so now they're giving them out for free

  • 

    jizmo on 25/10/2022 - 20:59

    +4

    More recently, QNAP detected that cybercriminals known as DeadBolt were exploiting a Photo Station vulnerability in order to encrypt QNAP NAS systems that were directly connected to the internet. This DeadBolt campaign also targeted Asustor users. According to the police there are around 20,000 affected devices worldwide. Each of them received instructions to pay 0.05 Bitcoin (around $1000 at the time of writing) to get a decryption key for their files.

    • 

      SBOB on 25/10/2022 - 21:09

      +4

      QNAP NAS systems that were directly connected to the internet

      bold move, and I say that as a QNAP owner :)

    • 

      UltimateAI on 25/10/2022 - 22:03

      +4

      Nothing about direct access.
      Actually QNAP devices with outbound internet access, eg: via a proxy or firewall running Photo Station were impacted.

      Majority of NAS devices deployed have Internet access, eg; ability to download updates, patches ect.

    • 

      sickaunt on 26/10/2022 - 06:20

      In the past 12 months bitchcoin hasn’t been lower than a few clams under $1500 for 0.05.

      • 

        SBOB on 26/10/2022 - 08:17

        +1

        In the past 12 months bitchcoin hasn’t been lower than a few clams under $1500 for 0.05.

        likely talking USD

        • 

          sickaunt on 26/10/2022 - 10:19

          @SBOB: Yeah right. My b

• 

  0HDAM on 25/10/2022 - 20:48

  +3

  Huh?

• 

  yoshi864 on 25/10/2022 - 20:48

  +4

  interesting 'deal' lol

• 

  silenthillrocks on 25/10/2022 - 20:48

  +21

  Cheers bought 10

• 

  spedohero on 25/10/2022 - 20:49

  +3

  Bargains. Free keys

• 

  CrispyChrispy on 25/10/2022 - 20:52

  +3

  Cool story, needs more dragons

• 

  Squirmy Squid on 25/10/2022 - 20:53

  How much is it usually?

  • 

    OldSchoolHarry on 25/10/2022 - 21:00

    0.03 BTC

    • 

      ChickenDinner123 on 25/10/2022 - 21:01

      +3

      0.05 BTC now.

      • 

        OldSchoolHarry on 25/10/2022 - 21:02

        +5

        Prices jacked here too!

• 

  Pete Gabitas on 25/10/2022 - 20:57

  +3

  Finally I can unlock Nan's rig.

• 

  m00seTheC0wSnake on 25/10/2022 - 20:59

  +3

  Is this for real or another way for scammers to harvest data and make you more of a target for ransomware?

• 

  ChickenDinner123 on 25/10/2022 - 20:59

  +2

  Lmao, did the Dutch police build a Keygen for the ransomware?

  If there are only 150 keys, maybe don't waste them.

  • 

    Surtr on 25/10/2022 - 21:03

    +3

    I may have read the other day (could be a different actor) where the police pretended to pay a large sum of Bitcoin for the keys, and the threat actor gave them up
    The police scammed the scammers

• 

  pennypincher98 on 25/10/2022 - 21:07

  -5

  The fact this made it on Ozbargain really says volumes about this community..

  • 

    jackspratt on 26/10/2022 - 02:06

    And yet, here you are….

  • 

    pennypincher98 on 26/10/2022 - 09:55

    +1

    The downvotes from Ozbargain also says volumes about this community.

    Ransomware isn't a joke, guys..

• 

  superforever on 25/10/2022 - 21:11

  +9

  I read "dealbot" 🙄

• 

  eggaz on 25/10/2022 - 21:12

  +4

  Did somebody say "bargain", oh oops my bad, they said "forum".

• 

  OzBoganYeah on 25/10/2022 - 21:26

  +3

  I don't really understand what any of this means, besides it being free…

• 

  Iwantthebestprice on 25/10/2022 - 21:37

  Can I have one?

• 

  johnyBgood on 25/10/2022 - 21:45

  +25

  Thanks, managed to compress my passport, license, medicare, payg and tax return docs to 25mb and renamed the zip to .deadbolt and was uploaded successfully. Now waiting for my decryption key..

  • 

    cyssero on 25/10/2022 - 22:01

    +21

    Should have just used the Optus API!

    • 

      CacheHunter on 25/10/2022 - 22:25

      +8

      If you have access to private and potentially embarrassing medical records that could be used for extortion, you might find the Medibank/AHM API is more effective.