269

Vibe-Coded 'Sicarii' Ransomware Can't Be Decrypted (www.darkreading.com)

submitted 1 month ago by whaleross@lemmy.world to c/programmer_humor@programming.dev

18 comments fedilink hide all child comments

Regarding Sicarii's broken decryption process, researchers said that "during execution, the malware regenerates a new RSA key pair locally, uses the newly generated key material for encryption, and then discards the private key."

you are viewing a single comment's thread
view the rest of the comments

[-] Cevilia@lemmy.blahaj.zone 79 points 1 month ago

Even if the malware author did correct the issue, it's unknown whether those already compromised can benefit, or if they're out of luck.

They literally said the private key was discarded. It's absolutely known whether those already compromised can benefit. They can't.

[-] Natanael@infosec.pub 14 points 1 month ago

Well, unless they also made key generation shitty, because that's equally plausible and would likely allow RSA keys to be broken (it's surprisingly hard to generate RSA keys safely)

[-] Cevilia@lemmy.blahaj.zone 5 points 1 month ago

I know just enough to know that I absolutely shouldn't try to roll my own encryption, and that's enough knowledge for me

this post was submitted on 28 Jan 2026

269 points (99.6% liked)

Programmer Humor

30436 readers

1965 users here now

Welcome to Programmer Humor!

This is a place where you can post jokes, memes, humor, etc. related to programming!

For sharing awful code theres also Programming Horror.

Rules

Keep content in english
No advertisements
Posts must be related to programming or programmer topics

founded 2 years ago

MODERATORS

Feyter@programming.dev

anzo@programming.dev

BurningTurtle@programming.dev

pylapp@programming.dev