The Belgian Federal Police has released free decryption keys for the Cryakl ransomware strain after working in cooperation with Kaspersky Lab. The keys were discovered during an ongoing investigation. The Belgian Federal Police shared the decryption keys with NoMoreRansom.org portal becoming a new associated partner of the project – the second law enforcement agency after the Dutch National Police.
Once the Belgian Federal Computer Crime Unit (FCCU) was informed that Belgian citizens had been victims of the Cryakl ransomware, they were able to locate a command and control centre in one of Belgium’s neighbouring countries. Led by the federal prosecutor’s office, the Belgian authorities managed to seize the C&C servers while forensic analysis worked to obtain the decryption keys.
Kaspersky Lab provided technical expertise to the Belgian federal prosecutor and has added these decryption keys to the NoMoreRansom.org site on behalf of the Belgian federal police. This will allow victims to recover access to their encrypted files without having to pay ransom to the cybercriminals. The Belgian police is currently continuing the investigation.