Collaborate Disseminate
Evidence ties people behind massive malware attack to mysterious Shadow Brokers group. Continue reading No evidence NotPetya developers obtained NSA exploits weeks before their public leak
Mike Mimoso and Chris Brook discuss this week’s ExPetr global ransomware outbreak, how it was distributed, the wiper aspect, and similarities to 2016’s Petya ransomware.
While defenders and security researchers are sifting artefacts that could help prevent new NotPetya ransomware attacks and perhaps point to the identity of the attacker, the victims are trying to recover their systems. Judging by the Bitcoin wallet to which ransom payments are to be made, some 45 organizations have attempted to go that route. As I’m writing this, the wallet holds nearly 4 Bitcoin (around $10,200). But it’s very doubtful that those that chose … More → Continue reading NotPetya attacker can’t provide decryption keys, researchers warn
The global outbreak of the Petya/ExPetr malware wasn’t a ransomware attack, it was wiper malware aimed to sabotage, according to experts. Continue reading ExPetr Called a Wiper Attack, Not Ransomware
Earlier this week, several European nations experienced a widespread ransomware attack. Major international giants, such as Merck, WPP, Rosneft, and AP Moller-Maersk, alongside financial institutions, banks, energy companies and more were affected, where users were locked out of computers. The focus of the attack was Europe, but it was also discovered that DLA Piper, a massive U.S. headquartered law firm, was hit by this new strain of ransomware. First reports attributed the attack to the … More → Continue reading The next frontier of cyber governance: Achieving resilience in the wake of NotPetya
Payload delivered in mass attack destroys data, with no hope of recovery. Continue reading Tuesday’s massive ransomware outbreak was, in fact, something much worse
Researchers at Kaspersky Lab have discovered an error in the ExPetr ransomware code that prevents recovery of lost data. Continue reading ‘Little Hope’ to Recover Data Lost to Petya Ransomware
The latest splash has been made by the Petya or NotPetya Ransomware that exploded in Ukraine and is infecting companies all over the World. It’s getting some people in deep trouble as there’s no way to recover the files once encrypted. The malware seems to be trying to hide it’s intent as it doesn’t really […]
The post NotPetya Ransomeware…
Read the full post at darknet.org.uk
Tuesday’s ransomware outbreak hit many businesses and government entities around the world, but by far the most numerous victims are located in Ukraine. The infection process The delivered malware was not, as initially believed, the original Petya ransomware or the previously seen variant PetrWrap. NotPetya, as this new threat was dubbed, is definitely made to look like Petya, and uses some of its code, but has its own specific characteristics: According to Kaspersky Lab researchers, … More → Continue reading NotPetya outbreak: What we know so far
Microsoft has made a definitive link between MEDoc and initial distribution of the Petya ransomware. Kaspersky Lab, meanwhile, has identified a Ukrainian government website used in a watering hole attack. Continue reading New Petya Distribution Vectors Bubbling to Surface