4IT Blog

4IT has been serving the Miami area since 2003, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.

Latest Ransomware Attack is Brutal Reminder of Cyber Security Importance

Alert_59619335

A new malware swept across the globe Tuesday, incorporating facets of many ransomwares that have made headlines recently. While it originally appeared to be a variant of the Petya ransomware, it has been determined that it shares more in common with WannaCry. However, “NotPetya,” as it has been named, has a few additional features that experts say make it worse than either of its predecessors.

Why NotPetya Isn’t Really a Ransomware
The first clue that researchers had that NotPetya had a different motivation was the fact that the ransom only demanded the Bitcoin equivalent of $300. Secondly, the only means of getting the decryption key was to send an email to an address hosted by German email provider Posteo. Despite the lack of preparation the payment method appeared to have, NotPetya itself was clearly designed to be able to infiltrate as many networks as possible and do maximum damage once inside.

A Hybrid Hacking Attack
Since the attack commenced, researchers have ascertained that despite its initial similarities with Petya, NotPetya shares many traits with other malicious programs. Like WannaCry, the attack that affected much of Europe, NotPetya leverages EternalBlue. EternalBlue is a National Security Agency hacking tool that targets unpatched systems and steals the passwords that allow administrator access. In addition to EternalBlue, NotPetya also utilizes EternalRomance, another code that was stolen from the NSA.

Once NotPetya has infected one computer, it extracts passwords from its memory or the local filesystem to allow itself to spread--including onto updated and patched Windows 10 systems.

How To Protect Your Files
First off, don’t expect that you can retrieve your files just by paying the ransom. Even if those responsible for NotPetya intended to keep their word and return them once paid, Posteo has shut down the provided email account victims were to receive their keys from. As a result, unless a victim was already following certain best practices, their files are as of yet unrecoverable.

However, this does not mean that everyone is vulnerable to this attack. Before the EternalBlue and EternalRomance exploits were distributed on the dark web, Microsoft had already released patches for the vulnerabilities. However, if these patches were not applied, a user’s systems were (and are) still vulnerable.

The best method to avoid infection from this kind of attack is to ensure your users understand the importance of cyber security efforts, and that all of your business’ systems are reinforced against the latest threats by keeping your defenses up-to-date.

Furthermore, even an infected user is not without hope if they have been backing up their files. If they have done so, all they have to do is disconnect their computer from the Internet, reformat their hard drive and restore their data from their backup solution. However, for this to work, you have to also be sure that your backups are up-to-date, and that your backup is stored in an isolated location, separate from your network.

4IT has the experience and expertise to help prevent you from becoming a victim of a malware like this, whether we help you manage your backups or help educate your users to avoid attacks like these in the first place. Give us a call at 305-278-7100 today.

 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Thursday, 23 November 2017
If you'd like to register, please fill in the username, password and name fields.

Mobile? Grab this Article!

Qr Code

Tag Cloud

security Tip of the Week Technology Cloud Privacy Best Practices Microsoft software Internet Business Computing Backup Hackers Productivity Hosted Solutions Business Management Managed Service Provider Google Malware IT Services Business Efficiency Windows Disaster Recovery IT Support Innovation Business Continuity Hardware VoIP Workplace Tips User Tips Computer Saving Money Virtualization Upgrade Windows 10 Miscellaneous Mobile Devices Mobile Device Management Data Server Network Security Mobile Computing Alert Email Communication Network Save Money Microsoft Office communications Quick Tips Smartphone Small Business BYOD Going Green Mobile Office Information Technology Social Media Smartphones Android Office Health Apps Application Ransomware Operating System Browser Gadgets Chrome Managed IT Services Outsourced IT Mobility Disaster Tablet Holiday Firewall WiFi Productivity Avoiding Downtime Managed IT Cybercrime Passwords Spam Telephone Systems BDR Risk Management Search The Internet of Things Best Practice Data Management Remote Computing Unified Threat Management IT Solutions Cybersecurity Hard Drives Vendor Management Saving Time Employer-Employee Relationship Budget Automation History Remote Monitoring VPN Hacking Facebook Apple Content Filtering Law Enforcement Hosted Solution Computers Marketing Proactive IT Data Backup Recovery User Error Phone System Collaboration Money iPhone Customer Relationship Management Office Tips Wireless Technology Big Data Phishing Data Recovery Password Work/Life Balance Bring Your Own Device Analytics Encryption Gmail Router Telephony Office 365 Government Humor Administration Lithium-ion battery Wearable Technology Maintenance PowerPoint Current Events Virus Antivirus Shortcut Social Printer Vulnerability USB Social Engineering Outlook App Private Cloud Point of Sale Politics IT COnsultant Cost Management Personal Information Intranet Computer Repair Bandwidth Data Security Printer Server Laptop Wireless Unsupported Software OneNote SaaS Audit Google Drive Cloud Computing HaaS Education Trending Save Time Net Neutrality Users Business Intelligence Data Protection Windows 8 Tech Support Meetings Fax Server Samsung Wi-Fi Workplace Instant Messaging Emails Emergency Artificial Intelligence Data Storage Network Congestion Streaming Media HIPAA Applications Help Desk Entertainment Uninterrupted Power Supply Benefits online currency hacker DDoS Computer Accessories Transportation Compliance Mouse Robot Computer Care Battery Two-factor Authentication Automobile Managing Stress Efficency Excel End of Support Social Networking Internet Exlporer Travel IT Support Internet of Things Display Identity Theft Windows 10 Customer Service Solid State Drive Update Sports Biometrics Flexibility Augmented Reality Retail Virtual Reality Paperless Office Data Loss iOS Wiring Computing Safety Text Messaging Managed IT Service Information Adobe Chromecast Managed IT Services Human Resources IT consulting How To Google Docs Computer Fan Running Cable Debate Upgrades Licensing Administrator Reliable Computing Training Microsoft Excel Colocation Dark Web Consultant Bloatware The Blindside Of Screen Mirroring Access Company Culture Black Market Twitter File Sharing Touchscreen IT Security Surge Protector Cast Nokia Windows 10s Branding Cleaning Television 3D Printing Experience systems Nanotechnology Distributed Denial of Service Keyboard Avoid Downtime Tablets Hard Disk Drive WIndows 7 Storage Inbound Marketing Music hack Root Cause Analysis eWaste ISP Regulations Hiring/Firing HBO NFL Data storage best practices Value Books Cortana CrashOverride Programming Cameras Smart Technology Blogging Video Games IT Management Document Management Word data breach User Science Hard Drive Data Breach Legislation Advertising Settings Virtual Desktop Presentation Website Legal WIndows Server 2008 Windows Ink Touchpad risk management Bluetooth Best Available Mobile Device Images Managed Security IT Technicians Uograde OneDrive Scam Patch Management Google Maps SharePoint Amazon Co-managed IT Commerce Employer Employee Relationship Regulation Worker Commute Software as a Service Operating Sysytem Teamwork Busines Continuity PDF Lifestyle Files Networking Near Field Communication Ebay Scalability Sync IT Budget Reputation Webinar Tutorial Mobile IT solutions Professional Services Shadow IT Relocation Gift Giving IT service Domains Microblogging Youtube Comparison Sales Taxes Specifications Buisness Managed Service Provder Webinar Supercomputer Electronic Medical Records