As reported by security firm Emisoft;
In one of the latest versions of Ryuk, changes were made to the way the length of the footer is calculated. As a result, the decryptor provided by the Ryuk authors will truncate files, cutting off one too many bytes in the process of decrypting the file. Depending on the exact file type, this may or may not cause major issues. In the best-case scenario, the byte that was cut off by the buggy decryptor was unused and just some slack space at the end created by aligning the file towards certain file size boundaries. However, a lot of virtual disk type files like VHD/VHDX as well as a lot of database files like Oracle database files will store important information in that last byte and files damaged this way will fail to load properly after they are decrypted.
https://blog.emsisoft.com/en/35023/bug-in-latest-ryuk-decryptor-may-cause-data-loss/I guess hackers can sometimes be dumb, lol. However, the only real victims here are those who have paid the ransom in hope that their files will be decrypted. But it's not the case, the good thing is, Emisoft is there to help out.
Disclaimer: I'm not an affiliate of Emisoft, just that this news gives me a good chuckle about the hackers
