For users that had their data encrypted in the recent Petya ransomware attack centered in the Ukraine, the security firm Positive Technologies has become the bearer of good news.
The firm found mistakes in the virus’ encryption programming that have allowed them to decrypt the files on an infected computer. Their fix is only applicable if the ransomware secured the administrative privileges on the affected machine, however. Their method of data recovery is highly complicated and currently takes hours to run. The completeness of the data recovery can also vary due to multiple influencing factors on each specific machine.
While it is not yet a working solution to the encryption problem, this is a step in the development of simplified methodologies and automated tools to reverse the encryption.
Read more about what Positive Technologies found here.