Cerber Ransomware demand - any change of getting around this one without paying?

feck1
feck1 used Ask the Experts™
on
Any way around it?
Pls see pic
Cerber Ransomware ...
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
JohnBusiness Consultant (Owner)
Most Valuable Expert 2012
Expert of the Year 2018
Commented:
any chance of getting around this one without paying?  <-- Restore from backups is the only other way.

Few of us in here recommend paying and the odds are less than 50:50 that you will get your data back.
Lee W, MVPTechnology and Business Process Advisor
Most Valuable Expert 2013
Commented:
You can easily get around this.  Restore your backups.

Otherwise, you can support terrorism and send terrorists money to unlock your files... I wouldn't - I don't like the idea that I'm giving money to people who kill and terrorize others... but if you can sleep at night, whatever works for you.
Lee W, MVPTechnology and Business Process Advisor
Most Valuable Expert 2013
Commented:
Ensure you’re charging the right price for your IT

Do you wonder if your IT business is truly profitable or if you should raise your prices? Learn how to calculate your overhead burden using our free interactive tool and use it to determine the right price for your IT services. Start calculating Now!

John TsioumprisSoftware & Systems Engineer
Commented:
It seems that Kaspersky has a decryptor for Cerber ransomware but it must match the version
Technical Advisor
Commented:
Unfortunately, it is almost impossible to decrypt the files locked by Cerber ransomware, and deleting the virus from your computer will not help to eliminate the cypher from the files. Trying to recover your files using hacker-suggested Cyber decryptor tool is not safe either. The best decision is to turn to some more reliable ways to recover your data as John mentioned above.
btanExec Consultant
Distinguished Expert 2018
Commented:
If you have the sample you can try out ID Ransomware (https://id-ransomware.malwarehunterteam.com/) to confirm the variant and if decryptor is available .  Cerber v1 is possible to decrypt and there is a tool (Trendmicro) https://success.trendmicro.com/solution/1114221-downloading-and-using-the-trend-micro-ransomware-file-decryptor#collapseFour
otherwise chances are close to zero. Do backup your files before trying too.

I have compiled a list of decryptor in Annex and also share possible means to recover under FAQ#4 @ https://www.experts-exchange.com/articles/28059/TL-DR-Ransomware-Infected.html

Author

Commented:
Odds of success without paying ?
JohnBusiness Consultant (Owner)
Most Valuable Expert 2012
Expert of the Year 2018
Commented:
< 1 percent
btanExec Consultant
Distinguished Expert 2018
Commented:
cant go any lower, please do not put your bet in it. If you have the backup, go with that. Sure recovery is not even close to always certain when you are dealing with these fraudster. The tool even if given may not be working after paying and such state is real and can happen again to all

Author

Commented:
No backups
I wasn't responsible for the back ups they were
JohnBusiness Consultant (Owner)
Most Valuable Expert 2012
Expert of the Year 2018
Commented:
You need to tell clients to back things up. A carefree attitude toward ransomware is death to data as you have seen.
Lee W, MVPTechnology and Business Process Advisor
Most Valuable Expert 2013

Commented:
Lesson learned.  If they can still stay in business.
btanExec Consultant
Distinguished Expert 2018

Commented:
Move on. Once bitten twice shy

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial