MeDoc – WindowsTechs.com

Massive supply chain cyberattack on the horizon in Ukraine, according to police

Posted on October 13, 2017 by Chris Bing

Ukrainian government authorities are warning of a “large-scale” cyberattack against local government agencies and private companies through the deployment of another booby-trapped software update, according to a cryptic press release published Thursday by the Secret Service of Ukraine (SBU). “SBU notifies about preparing of a new wave of large-scale attack against the state institutions and private companies,” the release notes. “The SBU experts received data that the attack can be conducted with the use of software updating, including public applied software. The mechanism of its realization will be similar to cyber-attack of June 2017.” The use of the word “realization” in the SBU’s statement has led some security researchers to believe the government is likely preparing, once again, for a destructive-style attack. The SBU did not respond to a request for comment. The ambiguous warning comes four months after a Russian hacking group, dubbed “Telebots” or “Sandworm Group” by security researchers, […]

The post Massive supply chain cyberattack on the horizon in Ukraine, according to police appeared first on Cyberscoop.

Continue reading Massive supply chain cyberattack on the horizon in Ukraine, according to police→

ExPetr Called a Wiper Attack, Not Ransomware

Posted on June 29, 2017 by Tom Spring

The global outbreak of the Petya/ExPetr malware wasn’t a ransomware attack, it was wiper malware aimed to sabotage, according to experts. Continue reading ExPetr Called a Wiper Attack, Not Ransomware→

New Petya Distribution Vectors Bubbling to Surface

Posted on June 28, 2017 by Michael Mimoso

Microsoft has made a definitive link between MEDoc and initial distribution of the Petya ransomware. Kaspersky Lab, meanwhile, has identified a Ukrainian government website used in a watering hole attack. Continue reading New Petya Distribution Vectors Bubbling to Surface→

The Latest Ransomware Took Advantage of a Devilishly Clever Trick

Posted on June 28, 2017 by Joseph Cox

Usually, ransomware may be spread via emails or websites. But at least some victims of this latest wave were infected by a software update, according to researchers and law enforcement. Continue reading The Latest Ransomware Took Advantage of a Devilishly Clever Trick→

Ukrainian officials: Hacked auto-updates spread ransomware infection across country

Posted on June 27, 2017 by Patrick Howell O'Neill

As the whole world deals with another massive ransomware outbreak, it appears the variant may have spread in different ways among the various impacted countries. In Ukraine, the hardest hit nation in Tuesday’s outbreak, the ransomware spread across government institutions, banks and even radiation monitoring at the Chernobyl nuclear facility. The initial attack vector has been attributed to an update of accounting software company MeDoc, which sent an infected file out to customers, according to Ukrainian officials as well as security researchers at Kaspersky and Cisco. MeDoc acknowledged Tuesday afternoon the company was targeted by “a massive hacker attack,” but denied that the software updates were the infection vector that allowed the malware to spread across the country. The company did not respond to a request for comment. Aleks Gostev, Kaspersky Lab’s Chief Security Expert, wrote sardonically on Twitter that MeDoc’s response was merely the first stage of grief: “Denial.” Кіберполіцією попередньо установлено, що перші вірусні атаки на […]

The post Ukrainian officials: Hacked auto-updates spread ransomware infection across country appeared first on Cyberscoop.

Continue reading Ukrainian officials: Hacked auto-updates spread ransomware infection across country→