LAUNCH
Footballguy
To quickly stop Petya right now - MS17-010 patch AND blocking ADMIN$ via GPO will stop lateral movement on WMI and PSEXEC.
https://www.cnet.com/news/unprecedented-cyberattack-hits-businesses-across-europe/?ftag=COS-05-10aaa0b&linkId=39163079
Another widespread ransomware attack is threatening to wreak havoc across the world.
Businesses and government agencies have been hit with a variation of the Petya ransomware -- that is, malware that holds crucial files hostage. The malware is demanding $300 in bitcoin before victims can regain access.
The new ransomware, identified by security firm Bitdefender as GoldenEye, has two layers of encryption, researchers said. It locks up both your files and your computer's file system.
"Just like Petya, it is particularly dangerous because it doesn't only encrypt files, it also encrypts the hard drive as well," said Bogdan Botezatu, a senior threat analyst with Bitdefender.
https://www.cnet.com/news/unprecedented-cyberattack-hits-businesses-across-europe/?ftag=COS-05-10aaa0b&linkId=39163079
Another widespread ransomware attack is threatening to wreak havoc across the world.
Businesses and government agencies have been hit with a variation of the Petya ransomware -- that is, malware that holds crucial files hostage. The malware is demanding $300 in bitcoin before victims can regain access.
The new ransomware, identified by security firm Bitdefender as GoldenEye, has two layers of encryption, researchers said. It locks up both your files and your computer's file system.
"Just like Petya, it is particularly dangerous because it doesn't only encrypt files, it also encrypts the hard drive as well," said Bogdan Botezatu, a senior threat analyst with Bitdefender.