A wave of the GlobeImposter 2.0 ransomware infected the computers of innocent internet users. They were told to visit a Tor website in order to pay up and have their files decrypted. Researchers at Coveware report that the masterminds behind the attack appear to have abandoned the recovery website. The site offers free decryption of a single file, but the victims are not able to upload the file to the site. The ticketing system allows the user to upload a file and send a short message with their contact information. The tickets are submitted with confirms sent to the email address input.”]