First identified last month, Jaff ransomware is relatively new, it’s getting help in being distributed with ‘Necurs botnet’ which currently controls over 6 million infected computers worldwide and is also responsible for the distribute of the Dridex Banking Trojan and Locky ransomware.
Ransomware locks your files and demands payments in may forms such as gift cards or bitcoins to make it near impossible to track, however once a ransom is paid many are left with no password to unlock. Thankfully Kaspersky Labs has released an updated version number 126.96.36.199 of its free ransomware decryption tool RakhniDecryptor, which can now also decrypt files locked by the Jaff ransomware. The security researchers at Kaspersky Labs have discovered an important weakness in the Jaff ransomware code that makes it possible for victims to unlock their Jaff-infected files for free.
Users can get the latest version of the RakhniDecryptor tool here.