Sometimes it rains in the wet, and it seems that in the case of Cyberpunk 2077 we speak of flood upon flood. And there is no doubt that an (important) part of his problems is directly related to his “questionable” practices at the launch of what was called to be the game of the year, but on the other hand it is also true that there are people who intend to do August on account of the title of CD Projekt Red, dirtying even more an image that, at this point, is not priced too high.
The disastrous launch of Cyberpunk 2077 for the previous generation base consoles has resulted in criticism of the company, Sony and Microsoft returning the money to disappointed buyers and, as we learned yesterday, some investors considering suing CD Projekt Red for having hidden information about the actual state of development for PlayStation 4 and Xbox One. Information that, had it been made public before the launch, would have substantially penalized its sales, but in return it would have avoided the image crisis, returns and possible legal problems.
All of these, as I said before, are Cyberpunk 2077 issues for which we can directly hold CD Projekt Red responsible, but also there are others in which the study is yet another victim, and such is the case of the version of the game that recently appeared in various repositories for Android. An unexpected surprise, since the study had never discussed a version for mobile devices.
New Android #Ransomware disguised as # Cyberpunk2077 game.
Downloaded from fake website imitating Google Play Store.
Family: CoderWare / BlackKingdom https://t.co/JBudDP6vG1 pic.twitter.com/TdM4SAkFWl
– Tatyana Shishkova (@ sh1shk0va) December 16, 2020
Unfortunately, and as often happens in these cases, after a tempting and unexpected surprise, in reality a security threat is found. As reported by cybersecurity expert Tatyana Shishkova through her Twitter account, a download that pretended to be the (non-existent) version of Cyberpunk 2077 for Android, it is actually a pathogen that, once installed on the device, encrypts the device data and demands a ransom of $ 500 so that the victim can recover their files.
Fortunately, a little research has allowed Shishkova to figure out how those affected can find out the decryption key of this ransomware posing as Cyberpunk 2077 without having to pay the ransom, as explained in this other tweet. And, fortunately, the key is found in the malware itself, so it is possible to find out and use it to decrypt the files.
This is one of those golden occasions to remember that a key element in safety is to act wisely. If CD Projekt Red has never talked about a version of Cyberpunk 2077 for Android, if the supposed game is not in Google Play but is in third-party repositories and if there is no mention of this version on the developer’s website … the best thing is to pass by.
❗️ RC4 algorithm with hardcoded key (in this example – “21983453453435435738912738921”) is used for encryption. That means that if you got your files encrypted by this #ransomware, it is possible to decrypt them without paying the ransom. https://t.co/Lj1hD1SvRK
– Tatyana Shishkova (@ sh1shk0va) December 17, 2020