Please ensure Javascript is enabled for purposes of website accessibility

Garmin Reportedly Paid Hackers $10 Million to Obtain Decryption Key

By Rich Duprey – Updated Aug 4, 2020 at 9:17AM

You’re reading a free article with opinions that may differ from The Motley Fool’s Premium Investing Services. Become a Motley Fool member today to get instant access to our top analyst recommendations, in-depth research, investing resources, and more. Learn More

The ransomware attack knocked out the GPS maker's networks for several days.

Garmin (GRMN -0.20%) reportedly paid a multimillion ransom to a group of Russian hackers who go by the name of Evil Corp in exchange for a decryption key to unlock files on its corporate network.

The ransomware attack by the hackers last month caused outages for several days on various networks such as Garmin Connect, which affected its smartwatches and fitness trackers, and flyGarmin, the company's navigational support service for pilots.

Garmin has not confirmed it paid a ransom, which could possibly run afoul of U.S. sanctions placed against Evil Corp. But BleepingComputer, the site that first reported the attack, says it confirmed Garmin received the decryption key.

Computer chip on motherboard with dollar sign on stop hand

Image source: Getty Images.

A case of Russian interference

On July 23, Garmin services began experiencing outages that took down websites, call centers, email, and online chats. The attack was the result of the WastedLocker ransomware virus that has been attributed to Evil Corp.

Last December, the U.S. Treasury sanctioned the group, saying it was working directly with Russian intelligence agencies. Anyone "engaging in transactions" with Evil Corp are subject to prosecution.

The first company Garmin supposedly turned to to pay the ransom declined because it did not want to run afoul of the sanctions. A second company, Arete IR, which published a study saying Evil Corp's association with WastedLocker is not certain, reportedly agreed to serve as the middleman and facilitate the transaction.

According to BleepingComputer, there are no known flaws in the WastedLocker algorithm, which means the decryption key cannot be made available for free. Since Garmin subsequently regained control over its networks, it means the ransom was paid. Employees told the website the amount demanded was $10 million.

Garmin told Sky News it "does not comment on rumor and speculation."


Rich Duprey has no position in any of the stocks mentioned. The Motley Fool has no position in any of the stocks mentioned. The Motley Fool has a disclosure policy.

Invest Smarter with The Motley Fool

Join Over 1 Million Premium Members Receiving…

  • New Stock Picks Each Month
  • Detailed Analysis of Companies
  • Model Portfolios
  • Live Streaming During Market Hours
  • And Much More
Get Started Now

Stocks Mentioned

Garmin Ltd. Stock Quote
Garmin Ltd.
$82.77 (-0.20%) $0.17

*Average returns of all recommendations since inception. Cost basis and return based on previous market day close.

Related Articles

Motley Fool Returns

Motley Fool Stock Advisor

Market-beating stocks from our award-winning analyst team.

Stock Advisor Returns
S&P 500 Returns

Calculated by average return of all stock recommendations since inception of the Stock Advisor service in February of 2002. Returns as of 09/24/2022.

Discounted offers are only available to new members. Stock Advisor list price is $199 per year.

Premium Investing Services

Invest better with The Motley Fool. Get stock recommendations, portfolio guidance, and more from The Motley Fool's premium services.