时间:2026-03-21 17:25:40 来源:网络整理编辑:焦點
The ransomware WannaCry has infected hundreds of thousands of computer systems around the globe, but
The ransomware WannaCry has infected hundreds of thousands of computer systems around the globe, but a security researcher claims he's figured out how to beat it.
In some cases, that is.
Adrien Guinet says that he was able to decrypt a ransomwared computer running Windows XP in his lab by discovering the prime numbers that make up the WannaCry private key. The private key is what a ransomware victim would need to buy off his attackers in order to regain access to his own files, but Guinet says he was able to do this without paying any Bitcoin ransom.
SEE ALSO:It won't be easy for WannaCry hackers to get their cashImportantly, Guinet acknowledges this technique has only been demonstrated to work on a computer running Windows XP. Why does that matter? Despite initial reports, those systems were not affected by the major May 12 outbreak as the worm that spread the ransomware didn't hit those systems.
However, WannaCry itself doeswork on XP — suggesting that if the ransomware manages to spread to XP this new technique could be used to help future victims.
Tweet may have been deleted
There are some other provisos as well.
"In order to work, your computer must not have been rebooted after being infected," Guinet wrote on Github. "Please also note that you need some luck for this to work," he added, "and so it might not work in every cases!"
Why luck? As Guinet explains, when WannaCry infects a computer it generates encryption keys that rely on prime numbers. Here comes the important part: The ransomware "does not erase the prime numbers from memory before freeing the associated memory."
"If you are lucky (that is the associated memory hasn't been reallocated and erased)," continues Guinet, "these prime numbers might still be in memory."
If you can recover those prime numbers, as Guinet says he did, you can decrypt your files.
Guinet released the software he used to decrypt the infected system to the public. He calls it "Wannakey."
As mentioned above, Wannakey has not been tested on a large scale and so it may not be a silver bullet. It does, however, suggest that data considered lost in future ransomware attacks may actually be recoverable. And that is some much needed good news.
TopicsCybersecurityWindows
Fake news reports from the Newseum are infinitely better than actual news2026-03-21 17:13
'Hamilton' gets a second national tour because we deserve something nice2026-03-21 16:40
Hey law students: Want a job? Well, you better learn to code.2026-03-21 16:34
Spoil all of 'Zelda: Breath of the Wild' with this cool interactive map2026-03-21 16:31
Metallica to seek and destroy your eardrums with new album this fall2026-03-21 16:28
Footage of a door slamming shut on its own is really creeping people out2026-03-21 16:21
Everyone's favourite physicist has a far2026-03-21 16:18
Spoil all of 'Zelda: Breath of the Wild' with this cool interactive map2026-03-21 16:14
Tributes flow after death of former Singapore president S.R. Nathan2026-03-21 15:28
Richard Hammond confirms motorbike crash rumours in blog post2026-03-21 15:22
Carlos Beltran made a very interesting hair choice2026-03-21 16:34
'This Is Us' bosses promise less tears and more laughs in Season 22026-03-21 16:26
These are some of the celebrities tweeting in honor of women today2026-03-21 16:16
New 'Ides of Trump' campaign will inundate Trump with critical postcards2026-03-21 16:07
'The Flying Bum' aircraft crashes during second test flight2026-03-21 15:31
The first 'Game of Thrones' Season 7 poster is here and it's pretty badass2026-03-21 15:26
Digital wall aims to protest Trump with 1,926 miles of immigrant art2026-03-21 15:19
Botnets are zombie armies and other helpful analogies from Alphabet's new Chrome extension2026-03-21 15:14
Nate Parker is finally thinking about the woman who accused him of rape2026-03-21 15:01
'The Last Man on Earth' kills off Trump's entire administration2026-03-21 14:46
