Petya ransomware beats now! A massive assault on the Petya ransomware began at 17: 30, causing disasters at airports, banks and many other organizations and institutions across Europe.
For the time being, it is unclear who is behind the offensive, but the security group from Moscow Group-IB told Reuters that it seems to be a concerted effort targeting both businesses and institutions in Russia and Ukraine at the same time. The exact extent of it raid has not yet been determined, but some believe that damage will be more than what caused it WannaCry.
Then it was found that the attack, which seems to have started in Russia and Ukraine, has also begun to spread to companies in Denmark, Spain and the United States.
So far several companies have reported that they are facing problems, such as shipping giant AP Moller-Maersk and Russia's leading oil producer Rosneft.
Global ransomware attack. #Petya
Harbor terminals
Airports
Electricity grids
Banks
Factory's
Offices
Insurance Company
Military
etc. pic.twitter.com/EvfDctWfkK— Ntisec 𓆣 🏴 (@ntisec) June 27, 2017
Boryspyl airport manager in Ukraine, Yevhen Dykhne, released a statement indicating flight delays.
"Keep calm, current information about departure times can be found in the scoreboard at the terminal."
According to chatter in the Twitterverse, the attackers are demanding a ransom of $300 in Bitcoin from individuals. Blackmail comes with a short message which asks victims to send money to a specific Bitcoin wallet ID to receive the deactivation key.
You can track all transactions made in the attacker's wallet ID from the following link:
https://bitref.com/1Mz7153HMuxXTuR2R1t78mGSdzaAtNbBWX
So far, about eight payments have been made, equivalent to just over 1 BTC (about $ 2.300).
F-Secure researcher Mikko Hypponen, reports that Petya ransomware locks popular file formats such as .pdf, .pptx, .ppt, .ova, .php and more. For the full list, see the message below:
Petya encrypts the following file types, demands a $ 300 Ransom in Bitcoin. pic.twitter.com/9a3S2fwDtR
- @mikko (@mikko) June 27, 2017
Petya ransomware but it seems to be spreading to ATMs and Super Market!
Even Chernobyl seems to have been affected by the attack. The nuclear plant's computers were reportedly affected by the cyberattack, prompting technicians at the shuttered plant in Ukraine to measure radium levels.energy using Geiger devices instead of specialized electronic means.
The global law firm DLA Piper has resorted to non-digital media to broadcast news, and the attack continues….