The world’s top companies use wandera Learn Why Try Wandera for Free

NotPetya ransomware silences computer systems around the world

NotPetya ransomware silences computer systems around the world

1400 933 Liarna La Porta

Hot on the heels of last month’s WannaCry outbreak, another ransomware attack has been unleashed affecting over 80 companies in various industries across the world.

The ‘NotPetya’ attack was first reported in Ukraine where the government, banks and utilities, as well as Kiev’s airport and metro system, were all hit with the malware.

Other organizations that have been infected include food giant Mondelez, major advertising firm WPP and Danish shipping and transport giant AP Moller-Maersk.

How does NotPetya work?

Researchers suggest the malware is a variant of an existing ransomware family called Petya. It’s been dubbed NotPetya because it’s different enough to be considered an entirely new form of ransomware.

It is believed the exploit method behind this attack was the same Windows exploit WannaCry used to infect hundreds of thousands of computers in May.

When a computer is infected and locked by the ransomware, a message is displayed demanding $300 in bitcoins be paid to decrypt locked systems. Those who pay are asked to send confirmation of payment to an email address. In exchange, a key to decrypt the systems is sent back to the victim.

What makes NotPetya so petrifying

The thing that makes NotPetya particularly ugly is instead of encrypting files on a disk like typical malware, this particular strain will lock the entire disk, preventing the system from working altogether.

Furthermore, the email address which the attackers are using to accept payment confirmation from victims has been shut down by the email provider. This means that there is no longer a way for people who decide to pay the ransom to contact the attacker for a decryption key to unlock their computer.

What can we learn from this attack?

As we’ve seen from our recent discovery of SLocker’s return, new variations of ransomware can be easily redesigned and deployed or packaged up with other pieces of malware to execute further attacks.

In the case of SLocker, the new variants discovered by MI:RIAM use a wide variety of disguises including altered icons, package names, resources and executable files in order to evade signature-based detection.

Our threat intelligence is updated regularly to account for the latest threats affecting mobile. We have a team of researchers who routinely investigate system vulnerabilities, new malware variants in distribution and emerging attack trends.

MI:RIAM provides us with zero-day capability that is second-to-none in protecting mobile devices from the latest attacks.

Learn more about threat prevention

You might hear about the dangerous leaks and mobile attacks that make the news. But your organization might just be vulnerable to other threats right now.

FIND OUT MORE

Liarna La Porta

Liarna La Porta

Liarna La Porta leads content marketing at Wandera. As Editor of Wandera’s blog, Liarna keeps the content ticking that makes Wandera a reliable news source for mobile security professionals. Her passion for helping tech start ups in all aspects of marketing and PR is reflected in the expert industry coverage she provides. An Australian adventurist at heart, Liarna has been in the Marketing and PR industry for over six years working from Melbourne, Sydney, London and San Francisco, soaking up the expertise required for her global role at Wandera.

All stories by:Liarna La Porta
Liarna La Porta

Liarna La Porta

Liarna La Porta leads content marketing at Wandera. As Editor of Wandera’s blog, Liarna keeps the content ticking that makes Wandera a reliable news source for mobile security professionals. Her passion for helping tech start ups in all aspects of marketing and PR is reflected in the expert industry coverage she provides. An Australian adventurist at heart, Liarna has been in the Marketing and PR industry for over six years working from Melbourne, Sydney, London and San Francisco, soaking up the expertise required for her global role at Wandera.

All stories by:Liarna La Porta