Ransomware 2.0 hits India, Europe

It has hit 2,000 targets, including banks, telecom companies, metro railways, airports, power plants, oil plants, pharmaceutical companies and government departments

GN Bureau | June 28, 2017


#Merck   #Maersk   #Ukraine   #Microsoft   #Wannacry   #Petya   #Ransomware   #Kaspersky   #egov  


Barely a month after the global Wannacry cyber hack, a new variant of ransomware malware has locked systems across several European countries and India.

Petya, as cyber researchers call it, uses vulnerability in the Microsoft’s Windows system, and encrypts the computer files. It is understood to have been developed by the National Security Agency of the US, later leaked on the internet—the way it happened in case of Wannacry.
“The WannaCry ransomware virus targeted only specific file extensions while still allowing the operating system access,” the Data Security Council of India (DSCI), said in a statement. 
 
Petya has hit 2,000 targets, including Danish shipping giant Maersk, US pharmaceutical firm Merck and several government and private institutions in Ukraine, reported technology portal Wired. 
 
Ukraine’s deputy prime minister Pavlo Rozenko has tweeted a screen shot of a computer monitor displaying the following message, “One of your disks contains errors and need to be repaired…..Warning: DO NOT TURN OFF YOUR PC! IF YOU ABORT THIS PROCESS, YOU COULD DESTROY ALL YOUR DATA!”
 
Security solutions firm Kaspersky claims that over 60 percent of the infected systems were in Ukraine and 30 percent in Russian. Incidents have also been reported in Russia, England, US, France, Norway, Israel, Poland, Germany, Italy, Belarus and Lithuania. 
 
“It has affected various business outlets spread across multiple sectors. The affected entities include banks, telecom companies, metro railways, airports, power plants, oil plants, pharmaceutical companies, government departments, logistics companies, food conglomerates, law firms etc. It has also led to shutdown of shipping terminals across the world. A total of 2,000 machines are being reported to be infected by this virus across the world,” the DSCI said.
 
Reportedly, Indian subsidiaries of UK and Russian based energy and aviation firms were also targeted. “As per a few informal sources, a few banks, insurance companies, law enforcement agencies and a large FMCG organisation have been known to be effected,” the DSCI said. At present, the exact number of infected organisations or ‘targets’ in Indian is not known yet.  
 
Indian computer emergency response team (ICERT), working under the ministry of electronics and IT, has released an advisory cautioning users against Petya ransomware. 
 
Here is what the ICERT recommends:
 
Apply patches to Windows systems as mentioned in Microsoft security bulletin MS17-010.
 
Perform regular backups of all critical information to limit the impact of data or system loss and to help expedite the recovery process. Ideally, this data should be kept on a separate device, and back-ups should be stored offline. 
 
Block SMB ports on enterprise edge or perimeter network devices
 
Don’t open attachments or click on URLs in unsolicited emails, even if they come from people in your list. In cases of genuine URLs, close the email and go to the organisation’s website directly through the browser. 
 
Maintain updated anti-virus software on all systems.
 
Keep the operating system third party applications (MS Office, browsers, browser Plugins) up-to-date with the latest patches. 
 
Detailed advisory here
 

Comments

 

Other News

Cabinet approves Mobile Phone Manufacturing Scheme

The union cabinet chaired by PM Narendra Modi has approved the Mobile Phone Manufacturing Scheme (MPMS) with a budgetary outlay of Rs 62,500 crore. It aims to further scale up the production, deepen domestic value addition, strengthen supply chain resilience, enhance global competitiveness. It

Building infrastructure is only half the job

Recent stories of stolen railway wires, disappearing communication towers and missing public infrastructure are often treated as bizarre law-and-order failures of India. Yet they raise a more fundamental question. Why does the State often discover the disappearance of a public asset only after it has alrea

New Delhi’s Indo-Pacific strategy enters a new phase

India appears to be investing fresh dynamism in its Indo-Pacific strategy. At the time when the US, under president Donald Trump, has adopted a conciliatory approach towards China and has changed the name of America’s Indo-Pacific Command to just Pacific Command, India has quietly moved towards con

CAG flags major fiscal lapses in Maharashtra

Maharashtra`s fiscal management has come under sharp scrutiny after the Comptroller and Auditor General (CAG) of India, in its State Finances Audit Report for 2024-25, flagged significant budgetary inefficiencies, accounting irregularities, understatement of key fiscal indicators and widespread governanc

The health sector research we are not doing

Some neglect is loud. This kind is quiet. It sits in research never commissioned, data never collected, questions never asked. In South Asia, that quiet has let the region’s worst health problems stay understudied, underfunded, and out of sight of those who could act.  

Study flags accessibility and last-mile challenges on Mumbai Metro Aqua Line

Mumbai Metro Line 3 (Aqua Line), the city`s first fully underground metro corridor and one of its largest public transport investments, represents a major engineering achievement and has been widely welcomed by commuters. However, the overall commuter experience continues to be constrained by accessibili

Upcoming Conferences





Archives

Current Issue

Opinion

Facebook Twitter Google Plus Linkedin Subscribe Newsletter

Twitter