ExPetr – WindowsTechs.com

Kaspersky Security Bulletin – Story of the year 2017

Posted on November 28, 2017 by Fedor Sinitsyn

Welcome to ransomware in 2017 – the year global enterprises and industrial systems were added to the ever-growing list of victims, and targeted attackers started taking a serious interest in the threat. It was also a year of consistently high attack numbers, but limited innovation. Continue reading Kaspersky Security Bulletin – Story of the year 2017→

Comparing EternalPetya and BadRabbit

Posted on October 25, 2017 by Bart

I’ve created a table comparing the EternalPetya (ExPetr, NotPetya, etc.) outbreak from June, and the BadRabbit ransomware outbreak from yesterday (2017-10-24).
I have decided to not include WannaCry (WanaCrypt0r), as they are not related, while Eternal… Continue reading Comparing EternalPetya and BadRabbit→

BadRabbit Ransomware Attacks Hitting Russia, Ukraine

Posted on October 24, 2017 by Michael Mimoso

A ransomware attack called BadRabbit has put a halt to business inside a handful of Russian and Ukrainian businesses. Continue reading BadRabbit Ransomware Attacks Hitting Russia, Ukraine→

Maersk Shipping Reports $300M Loss Stemming from NotPetya Attack

Posted on August 16, 2017 by Michael Mimoso

A.P. Moller -Maersk said June’s NotPetya wiper malware attacks would cost the world’s largest shipping container company $300M USD in lost revenue. Continue reading Maersk Shipping Reports $300M Loss Stemming from NotPetya Attack→

Ukrainian Man Arrested, Charged in NotPetya Distribution

Posted on August 11, 2017 by Tom Spring

Ukranian police arrested a suspect alleged to have distributed the NotPetya/ExPetr malware that ultimately infected 400 computers. Continue reading Ukrainian Man Arrested, Charged in NotPetya Distribution→

APT Trends report Q2 2017

Posted on August 8, 2017 by GReAT

Since 2014, Kaspersky Lab’s Global Research and Analysis Team (GReAT) has been providing threat intelligence reports to a wide-range of customers worldwide, leading to the delivery of a full and dedicated private reporting service. Prior to the new service offering, GReAT published research online for the general public in an effort to help combat the ever-increasing threat from nation-state and other advanced actors. Continue reading APT Trends report Q2 2017→

Motivation Mystery Behind WannaCry, ExPetr

Posted on July 21, 2017 by Michael Mimoso

A shift in APT tactics is emerging as characterized by the destructive ExPetr attacks hidden in ransomware, and WannaCry, which also failed to turn a profit. Continue reading Motivation Mystery Behind WannaCry, ExPetr→

A King’s Ransom It is Not

Posted on July 20, 2017 by GReAT

The first half of 2017 began with two intriguing ransomware events, both partly enabled by wormable exploit technology dumped by a group calling themselves “The ShadowBrokers”. These WannaCry and ExPetr ransomware events are the biggest in the sense that they spread the quickest and most effectively of known ransomware to date. Continue reading A King’s Ransom It is Not→

Threatpost News Wrap, July 14, 2017

Posted on July 14, 2017 by Chris Brook

Mike Mimoso and Chris Brook discuss the news of the week, including the Verizon breach, the Oracle session hijacking attack, a Telegram-based hacking tool, and a free EternalBlue scanner. Continue reading Threatpost News Wrap, July 14, 2017→

No Free Pass for ExPetr

Posted on July 13, 2017 by Kaspersky Lab

Recently, there have been discussions around the topic that if our product is installed, ExPetr malware won’t write the special malicious code which encrypts the MFT to MBR. Some have even speculated that some kind of conspiracy might be ongoing.… Read Full Article Continue reading No Free Pass for ExPetr→