Kaseya has obtained a decryptor for REvil ransomware, and is using it to help customers recover their affected data. Kaseya says that it obtained the decryptor from an unnamed "third party," but adds that it's working with ransomware decryption specialists Emsisoft who have confirmed the decryptor's efficacy. Computing speculates about who that unnamed third party might be, and comes up with three leading candidates: "the US government, the Russian government, or a ransom payment to the attackers."
NSO Group tells the BBC that blaming the company for abusive use of its Pegasus tool is like "criticising a car manufacturer when a drunk driver crashes." NSO continues to dispute any connection between the leaked list of fifty-thousand alleged targets. "It's an insane number," a company representative said. "Our customers have an average of 100 targets a year. Since the beginning of the company, we didn't have 50,000 targets total."
The Tokyo Olympics are officially underway, with the opening ceremonies held today. The Washington Post takes due note of the risk of a disruptive cyberattack on the games, pointing out that the last two Olympics sustained Russian cyberattacks in apparent retaliation for the disqualification of some of that country's athletes in a doping scandal. The FBI outlined the nature of the threat, in a general way, in an advisory issued earlier this week. The Record reports that an Olympic-themed wiper was discovered Wednesday, but this seems more opportunistic use of the Olympics as bait, and not an attack on the games themselves.