June 28, 2017
Massive Ransomware Attack Spreading across the Globe
A large-scale ransomware attack has already hit 12,000 machines in about 65 countries around the world.
Although it was initially believed to be a new form of Petya ransomware, researchers have determined it is an entirely new strain of ransomware. The attack has affected shipping giant, Maersk, as well as the radiation monitoring systems at the site of the Chernobyl disaster. Other industries impacted in Ukraine include power grid companies, banks, the postal service, media outlets, and cell providers.
The latest worldwide outbreak of ransomware works similar to the WannaCry epidemic from early May. Unpatched versions of Windows are open to the EternalBlue exploit, which then delivers a payload like the Petya malware from last year. (Another reminder to ensure you have installed the latest updates patches.) Petya and its variants lock up the Master File Table (MFT) of your computer, making it unable to boot unless you pay a ransom. The EternalBlue exploit can even infect users and they don't even need to be breached personally by an attack.
As with any strain of ransomware, it’s important to know what to do in the event of an infection. To learn more about ransomware and what you can to do avoid losing your data, visit our ransomware resource page.