New Ransomware Attach Infects Airlines, Banks and Utilities across the World

New Ransomware Attack Infects Airlines, Banks and Utilities across the World

Yesterday, PC users across the world were asking for help as ransomware took data hostage and locked users out of their computers.

A major ransomware attach brought business to a close throughout Europe just weeks after the major WannaCry Attack. The most severe damage is being reported by Ukraine, with compromised systems at the central bank, state telecom, municipal metro and airport. Systems were also reported infected at the country’s electricity supplier, although a spokesperson for the power supply company said they remained unaffected during the attack.

The virus spread internationally in a matter of hours. Danish shipping company Maersk reported systems down across multiple sites, including the company’s Russian logistics arm Damco. Also in Russia, the virus reached severs for oil company Rosneft, although it is unclear how much was damaged.

In addition to the infected computer systems overseas, several U.S. companies were affected by the ransomware, namely pharmaceutical company Merck, a Pittsburgh-area hospital and the U.S. officers of law firm DLA Piper.

Reports from a Kaspersky researcher identified the virus as a  variant of the Petya ransomware, although later remarked that the strain was completely new. After that, the ransomware became dubbed as “NotPetya.”

NotPetya works similarly to WannaCry, as it spreads quickly through Window’s SMB file-sharing system, taking the data hostage and asking users to pay a ransom to get it back.

Once infected, the virus encrypts each computer to a private key, rendering it unusable until the system is decrypted. The program then instructs the user to pay $300 to a static Bitcoin address, then email the bitcoin wallet and installation key to a Posteo email address. As of yesterday afternoon, blockchain records showed 20 transactions to the target wallet, totaling roughly $4,900. It’s unclear whether any systems have been successfully decrypted after payment.

Windows sent out a security patch following the WannaCry Attack, but many users remain vulnerable. It seems a string of malware variants have employed the exploit to deliver ransomware or mine cryptocurrency.

Featured

  • Gaining a Competitive Edge

    Ask most companies about their future technology plans and the answers will most likely include AI. Then ask how they plan to deploy it, and that is where the responses may start to vary. Every company has unique surveillance requirements that are based on market focus, scale, scope, risk tolerance, geographic area and, of course, budget. Those factors all play a role in deciding how to configure a surveillance system, and how to effectively implement technologies like AI. Read Now

  • 6 Ways Security Awareness Training Empowers Human Risk Management

    Organizations are realizing that their greatest vulnerability often comes from within – their own people. Human error remains a significant factor in cybersecurity breaches, making it imperative for organizations to address human risk effectively. As a result, security awareness training (SAT) has emerged as a cornerstone in this endeavor because it offers a multifaceted approach to managing human risk. Read Now

  • The Stage is Set

    The security industry spans the entire globe, with manufacturers, developers and suppliers on every continent (well, almost—sorry, Antarctica). That means when regulations pop up in one area, they often have a ripple effect that impacts the entire supply chain. Recent data privacy regulations like GDPR in Europe and CPRA in California made waves when they first went into effect, forcing businesses to change the way they approach data collection and storage to continue operating in those markets. Even highly specific regulations like the U.S.’s National Defense Authorization Act (NDAA) can have international reverberations – and this growing volume of legislation has continued to affect global supply chains in a variety of different ways. Read Now

  • Access Control Technology

    As we move swiftly toward the end of 2024, the security industry is looking at the trends in play, what might be on the horizon, and how they will impact business opportunities and projections. Read Now

Featured Cybersecurity

Webinars

New Products

  • Automatic Systems V07

    Automatic Systems V07

    Automatic Systems, an industry-leading manufacturer of pedestrian and vehicle secure entrance control access systems, is pleased to announce the release of its groundbreaking V07 software. The V07 software update is designed specifically to address cybersecurity concerns and will ensure the integrity and confidentiality of Automatic Systems applications. With the new V07 software, updates will be delivered by means of an encrypted file. 3

  • Camden CV-7600 High Security Card Readers

    Camden CV-7600 High Security Card Readers

    Camden Door Controls has relaunched its CV-7600 card readers in response to growing market demand for a more secure alternative to standard proximity credentials that can be easily cloned. CV-7600 readers support MIFARE DESFire EV1 & EV2 encryption technology credentials, making them virtually clone-proof and highly secure. 3

  • Unified VMS

    AxxonSoft introduces version 2.0 of the Axxon One VMS. The new release features integrations with various physical security systems, making Axxon One a unified VMS. Other enhancements include new AI video analytics and intelligent search functions, hardened cybersecurity, usability and performance improvements, and expanded cloud capabilities 3