4IT Blog

4IT has been serving the Miami area since 2003, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.

Latest Ransomware Attack is Brutal Reminder of Cyber Security Importance


A new malware swept across the globe Tuesday, incorporating facets of many ransomwares that have made headlines recently. While it originally appeared to be a variant of the Petya ransomware, it has been determined that it shares more in common with WannaCry. However, “NotPetya,” as it has been named, has a few additional features that experts say make it worse than either of its predecessors.

Why NotPetya Isn’t Really a Ransomware
The first clue that researchers had that NotPetya had a different motivation was the fact that the ransom only demanded the Bitcoin equivalent of $300. Secondly, the only means of getting the decryption key was to send an email to an address hosted by German email provider Posteo. Despite the lack of preparation the payment method appeared to have, NotPetya itself was clearly designed to be able to infiltrate as many networks as possible and do maximum damage once inside.

A Hybrid Hacking Attack
Since the attack commenced, researchers have ascertained that despite its initial similarities with Petya, NotPetya shares many traits with other malicious programs. Like WannaCry, the attack that affected much of Europe, NotPetya leverages EternalBlue. EternalBlue is a National Security Agency hacking tool that targets unpatched systems and steals the passwords that allow administrator access. In addition to EternalBlue, NotPetya also utilizes EternalRomance, another code that was stolen from the NSA.

Once NotPetya has infected one computer, it extracts passwords from its memory or the local filesystem to allow itself to spread--including onto updated and patched Windows 10 systems.

How To Protect Your Files
First off, don’t expect that you can retrieve your files just by paying the ransom. Even if those responsible for NotPetya intended to keep their word and return them once paid, Posteo has shut down the provided email account victims were to receive their keys from. As a result, unless a victim was already following certain best practices, their files are as of yet unrecoverable.

However, this does not mean that everyone is vulnerable to this attack. Before the EternalBlue and EternalRomance exploits were distributed on the dark web, Microsoft had already released patches for the vulnerabilities. However, if these patches were not applied, a user’s systems were (and are) still vulnerable.

The best method to avoid infection from this kind of attack is to ensure your users understand the importance of cyber security efforts, and that all of your business’ systems are reinforced against the latest threats by keeping your defenses up-to-date.

Furthermore, even an infected user is not without hope if they have been backing up their files. If they have done so, all they have to do is disconnect their computer from the Internet, reformat their hard drive and restore their data from their backup solution. However, for this to work, you have to also be sure that your backups are up-to-date, and that your backup is stored in an isolated location, separate from your network.

4IT has the experience and expertise to help prevent you from becoming a victim of a malware like this, whether we help you manage your backups or help educate your users to avoid attacks like these in the first place. Give us a call at 305-278-7100 today.



No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Thursday, 21 September 2017
If you'd like to register, please fill in the username, password and name fields.

Mobile? Grab this Article!

Qr Code

Tag Cloud

security Tip of the Week Technology Cloud Best Practices Privacy Microsoft Business Computing Internet software Backup Hackers Hosted Solutions Productivity Business Management Managed Service Provider Malware IT Services Business Google Efficiency Windows Innovation Disaster Recovery IT Support Hardware Workplace Tips Business Continuity Computer VoIP Saving Money Miscellaneous Windows 10 Virtualization User Tips Upgrade Mobile Devices Data Mobile Device Management Server Mobile Computing Email Network Security Communication Network Alert Save Money Microsoft Office communications Quick Tips Social Media Smartphones Information Technology BYOD Going Green Mobile Office Apps Small Business Android Health Office Smartphone Browser Gadgets Application Ransomware Operating System Chrome Outsourced IT Tablet Productivity Managed IT Services Firewall Avoiding Downtime Disaster IT Solutions Spam Mobility WiFi BDR Cybercrime Telephone Systems Search Passwords Holiday Managed IT The Internet of Things Remote Computing Risk Management Unified Threat Management Best Practice Data Management Hard Drives History Remote Monitoring Saving Time Employer-Employee Relationship Budget Automation Vendor Management Facebook Cybersecurity Hacking Customer Relationship Management Phishing Password Proactive IT Hosted Solution Computers Apple Collaboration Phone System Recovery VPN Marketing Wireless Technology Office Tips Law Enforcement Big Data Shortcut USB Wearable Technology Content Filtering Social Office 365 iPhone Analytics Maintenance Gmail PowerPoint Router Virus User Error Telephony Money Lithium-ion battery Bring Your Own Device Current Events Humor Printer Administration Antivirus Business Intelligence Outlook Encryption Data Recovery Social Engineering Government App Users Cost Management Windows 8 Intranet Wireless Bandwidth Unsupported Software Private Cloud Printer Server Laptop Cloud Computing Google Drive Data Backup OneNote Save Time Education Trending Net Neutrality Point of Sale IT COnsultant HaaS Computer Repair Work/Life Balance Tech Support Paperless Office Samsung Travel Wi-Fi Emergency IT Support Fax Server Update Customer Service Biometrics Applications Workplace Retail Virtual Reality Social Networking hacker Streaming Media Vulnerability Meetings Personal Information Uninterrupted Power Supply Transportation online currency Emails Computer Care Battery Instant Messaging Robot Data Storage HIPAA Entertainment Automobile Benefits End of Support DDoS Computer Accessories Efficency Mouse Internet Exlporer Compliance Network Congestion Internet of Things Identity Theft Two-factor Authentication Solid State Drive Managing Stress Help Desk Data Protection SaaS Flexibility Excel Display Audit Augmented Reality WIndows Server 2008 IT Technicians How To Chromecast Ebay Upgrades risk management SharePoint Artificial Intelligence Computing Training Patch Management Administrator Colocation Consultant Windows 10 The Blindside Of Commerce Teamwork Busines Continuity Company Culture Regulation Black Market Access Networking Near Field Communication Hard Drive Touchscreen Politics IT Security Cleaning Sync Human Resources Uograde IT consulting Images Twitter Experience iOS Keyboard Managed IT Service Running Cable Avoid Downtime Adobe Surge Protector Managed IT Services Reliable Computing Television Music Computer Fan Hiring/Firing 3D Printing Licensing Bloatware Data storage Books Dark Web Smart Technology Screen Mirroring Video Games ISP Wiring Document Management Branding Advertising Information Data Breach Cast Distributed Denial of Service Legal Programming Blogging Mobile Device Windows 10s Touchpad Debate WIndows 7 Managed Security Nanotechnology Scam Data Security eWaste Inbound Marketing Regulations Website Tablets Hard Disk Drive Root Cause Analysis Employer Employee Relationship HBO Sports Value OneDrive Cameras NFL Worker Commute best practices Operating Sysytem CrashOverride PDF Nokia User Amazon Co-managed IT IT Management Scalability Science Files Presentation Word data breach Virtual Desktop Safety Settings Bluetooth Text Messaging Best Available Lifestyle Reputation Windows Ink Buisness Tutorial Youtube Shadow IT Microblogging Relocation Sales Managed Service Provder Webinar Webinar Mobile Gift Giving IT solutions Professional Services Storage Taxes IT service Supercomputer Electronic Medical Records Domains IT Budget