Not two months ago, the world fell victim to the largest malware attack in history. This week another attack threatens the data of the world.
The Petya ransomware restarts computers and encrypts all data on computers. The malicious software the demands $300 in the digital currency Bitcoin.
The Petya spreads rapidly across a network after a single computer becomes infected. It uses the EternalBlue vulnerability in Windows or through one of two Windows administrative tools; Petya attempts to use one tool and tries the next tool if the first is not successful.
EternalBlue is the same exploit used by WannaCry ransomware in May. The exploit is believed to have been developed by the NSA and released to tje world by hackers. On March 14, 2017, Microsoft issued a security bulletin detailing the flaw and announced that patches had been released for all Windows versions that were currently supported at that time. In May, Microsoft released a patch for older operating systems in response to the Wanna cry attack. Unfortunately, not everyone will have installed it the patches.
Petya ransomware infects computers and waits about an hour before rebooting the imfected computer. While the compuyer reboots, a user should turn the computer off to prevent the files from being encrypted. Afterward, a tech can rescue the umemcrypted files from the hard drive.
If your computer reboots to display the ransom note, DO NOT pay the ransom. The “customer service” email address used by the criminals behind this attack was shut down by the service proviser. As a result, no one will send the decryption key to unlock your files.
Disconnect your computer from the internet, and bring it to Digital Age Solution. Our techs will reformat the hard drive, reinstall Windows, and recover your files from a backup.
If you have not done so already, sign up for DAD Safe and Secure. We automatically back up your files with version recovery constantly, protect your system with up to date Internet security and anti-virus software, and install updates and patches yo keep your computer up to date.