Massive Cyberattack Strikes Computers Around The World, India Among Those Affected

The Logical Indian Crew

June 28th, 2017

Image source: telegraph

Less than seven weeks after the WannaCry cyberattack hit 2 lakh computers in 150 countries, another cyberattack has the international community scrambling to assert a durable defence.

Since Tuesday, 27 June, another strain of ransomware has caused serious disruptions around the world. It has been informally named “Petypa” (though Kaspersky Lab has redubbed the malware NotPetya).

Petya has brought hundreds of major organisations and big firms to a standstill. Victims include the Chernobyl Nuclear Power Plant, British advertising giant WPP, French construction materials company Saint-Gobain, and Russian steel and oil firms Evraz and Rosneft.




What this means is that if a person decides to pay the ransom amount, after the payment there is no way for them to contact the attacker for a decryption key to unlock their computer.



The net casualties of the attack are still unclear. The initial targets were companies in Ukraine, Russia and Poland, with the attacks spreading to Europe, Asia and the Americas rapidly. At least 2,000 attacks were recorded by Kaspersky Lab in North America alone as of Tuesday morning (EST).

The perpetrators of the attack are yet to be tracked. The US Homeland Security, INTERPOL and other international bodies are working to contain the attack and undo the damage. “With there being no global kill switch for this one, we’ll continue to see the numbers rise in different parts of the world as more vulnerable systems become more exposed,” Bloomberg quoted Beau Woods, deputy director of the Cyber Statecraft Initiative at the Atlantic Council, as saying.


What is ransomware?

The term “ransomware” refers to malicious programs that are installed on a device by (for example) clicking on infected links or attachments. This is particularly true when the device is badly protected, for example, when software installed there has not been updated for a long time. The malicious software prevents access to data and systems – and the affected user is prompted to pay a ransom for the release of his data.

However, a payment usually does not lead to the release of the data.



What is Peyta?

Petya is a family of encrypting ransomware that was first discovered in 2016. The malware targets Microsoft Windows-based systems, demanding a payment in Bitcoin in order to re-gain access to the system.


An image of a skull and crossbones is displayed as part of the payload on the original version of Petya.

Variants of Petya were first seen in March 2016, which propagated via infected email attachments. The recent attack involves a new variant of Petya that utilises the EternalBlue vulnerability previously used by WannaCry earlier in the year.

WannaCry exploited a loophole in operating systems known as EternalBlue. While Petya exploited the same loophole, it also used more fundamental structural defects. Moreover, while WannaCry targeted smaller, more vulnerable systems, Petya has initiated its attack by targeting large corporate systems, which explains how the malware spread so rapidly.

McAfee engineer Christiaan Beek stated that this variant was designed to spread quickly, and that it had been targeting “complete energy companies, the power grid, bus stations, gas stations, the airport, and banks”.


How did Petya affect India?

Petya hit operations at one of the three terminals at Jawaharlal Nehru Port Trust (JNPT) in Mumbai. JNPT is India’s largest container port and is operated by AP Moller-Maersk, a Danish business conglomerate that was among the worst hit by the cyberattack.



“An unforeseen situation has developed at Jawaharlal Nehru Port Trust (JNPT), Sheva owing to disruption in the operations of one of the private terminal operator, APM Maersk at JNPT. It has been informed by the private Terminal Operator that this disruption is a consequence of a worldwide disruption being faced by them because of a cyber attack,” India’s shipping ministry said in a statement.

“The (shipping) ministry has confirmed that one terminal at JNPT has been affected due to the attack at Maersk’s Hague office,” an official told The Times of India, adding that the government will share a report or a statement as soon as it comes to this effect.

Moller-Maersk, meanwhile, said, “We are responding to the situation to contain and limit the impact and uphold operations.” The group is “assessing and managing” the situation to minimise the impact on its customers and partners.

A high-level meeting has been called in the cabinet secretariat, which is to be attended by officials from CERT-In (Indian government’s cyber security arm) and the shipping ministry. The meeting will take place at 3:45 pm on Wednesday, 28 June. A press statement from the Prime Minister’s Office is also expected.


Also read:

  1. “Unprecedented” Cyber Attack Hits 2 Lakh Computers In 150 Countries; India 3rd Most Affected
  2. International Cyberattack Underway, India 3rd Most Affected: How You Can Be Safe

Share your thoughts..

Related Stories

Uber

Uber Paid Hackers $100,000 To Cover Up Data Breach Of Over 5 Crore Passengers And Drivers

From Next Month, Govt To Track Citizens’ Social Media Posts To Nab Tax Evaders

Amarnath Yatra Terror Attack: What We Know So Far

Manchester, UK: 22 Dead, Around 59 Injured In A Terrorist Attack, ISIS Claims Responsibility

22-Yr-Old Who Stopped Last Week’s Global Cyberattack Donates $10,000 Reward To Charity

Wannacry Ransomware Attack

International Cyberattack Underway, India 3rd Most Affected: How You Can Be Safe

Latest on The Logical Indian

Exclusive

This Initiative From Pune Recycles Plastic To Turn It Into Cheap Fuel For Villagers

News

MP: Police Arrest 30 Carol Singers Singing On The Road, Right Wing Group Sets Priest’s Car Ablaze

News

On Nirbhaya’s Death Anniversary, Women To Meet & Sleep On Parks To Reclaim Public Spaces

News

BSP Corporator Takes Oath In Urdu, Stirs Controversy

Awareness

66% Dip In The Disbursement Of Funds To Promote RTI

Get Inspired

Remembering Param Vir Subedar Joginder Singh Who Laid His Life Fighting Chinese Until His Ammunition Ran Out