Petya Ransomware Attack Affecting Companies Globally

There have been many reports that many companies across the globe have been subject to another major ransomware cyber-attack, currently known to have affected over 12,500 machines in Ukraine alone.

The malware compromises the computer through the download of a legitimate application (a tax application called MEDoc was the first known instance) and then creates a task to restart the computer after 10-60 minutes.

The malware then encrypts the computer (pretending to be a disk check) and then demands a ransom of $300 in Bitcoins per computer to be paid. One Bitcoin is currently worth $2350!

petya ransomPetya Ransomware encrypting a computer.

These attacks come just two months after the WannaCry attack and use similar methods to spread throughout a network. Consumers that are using the latest Windows updates and definitions for their antivirus should be safe.

Additional information for technical users can be found here.

We can confirm that all of our clients are secured from this type of attack and the underlying vulnerability used to spread between computers. If you have been affected by this attack, or are worried about your compter security, get in contact with us today on 0800 304 7444 or enquiries@coretek.co.uk and we’ll be happy to help.

About the Author David Green

David is one of our Senior Systems Consultants.

With experience providing IT services to manufacturing organisations, dealing with products from fresh food to Formula 1; David works primarily with Matt on architecting the CoretekCloud, as well as supporting business customers.

Away from work, David can be found outside hiking, climbing and doing outside things. He also very occasionally posts technical ramblings on his website and contributes to the PowerShell community which has led to him being able to contribute as a technical reviewer for a couple of books.