The Avaddon Ransomware gang has fixed a bug that let victims recover their files without paying the ransom. The flaw came to light after a security researcher exploited it to create a decryptor. The developer increased affiliates’ revenue share to 80% to compensate the operation’s affiliates whose victims may have received free decryption. Most ransomware experts do not think security companies and researchers should publish encryption flaws or decryptors as it allows the threat actors to fix the bugs in their malware. In the past, ransomware operations routinely taunted antivirus companies, researchers, and even BleepingComputer after news or research was published.
Source: https://www.bleepingcomputer.com/news/security/avaddon-ransomware-fixes-flaw-allowing-free-decryption/