Fonix actors close the ransomware operations. The cybercrime group: We deleted the malware (aka Xinof and FonixCrypter) source code and released the decryption key, but not all the admins agree with this

Fonix (aka Xinof and FonixCrypter) cybercrime actors closed the ransomware operations and released the decryption key. It has been announced by one of the malware team admins on Twitter. In a post he explained that “we should use our abilities in positive ways and help others. Main admin has decided to put all previous work aside and decrypt all infected systems at no cost. And the decryption key will be available to the public.” Furthermore, also ransomware source is completely deleted.” But, he denounced, “some members are disagree with closure of the project, like Telegram channel admin who trying to scam people by selling fake source and data.” According the cybersecurity experts, this decision could be related to the last international law enforcement operations, that led the disruption of the Emotet botnet and the NetWalker infrastructure. The cyber criminals would fear to be targeted, following the new cyber offensive.