NotPetya and not just Petya: NSA, the US National Security Agency, started using a hacking tool called EternalBlue five years ago. During the duration during that time, the service breached networks using a flaw it should have immediately disclosed to Microsoft.
The NSA finally revealed the vulnerability to Microsoft earlier this year, but only after theft of the exploits and then their distribution to the medianetwork. Microsoft immediately issued a "critical" patch (in March), and from May WannaCry began to circulate. A ransomware used by EternalBlue to infiltrate Windows computers. This particular malware managed to infect over 230.000 computers in over 150 countries.
Yesterday we met NotPetya.
NotPetya is similar to Petya ransomware, but it belongs to its own classification, according to security researchers. And two χρησιμοποίησαν το EternalBlue exploit, but their similarities do not stop there.
NotPetya is a completely new form of ransomware used yesterday to invade the Chernobyl radiation detection system, the Kiev subway, the banks and at least one US hospital.
Η Kaspersky claims at least 2.000 businesses and institutions around the world have been affected in the last 24 hours.
The latest on #petya #notpetya #ExPetr & @Securelist blog https://t.co/PK5R7sOsNO#YARA pic.twitter.com/CfuprRudf2
- Kaspersky (@kaspersky) June 27, 2017
And WannaCry, it was devastating, but it was an impossible tool full of bugs created by amateurs.
NotPetya, according to experts, is not an amateur tool.
“That's great. Really great, ”former NSA analyst David Kennedy told Forbes.
Unlike WannaCry, which contained a Switch kill to be able to disable it remotely. That's it new ransomware it has no equivalent.
Τα κακά νέα είναι ότι μπορεί να μολύνει οποιαδήποτε έκδοση των Windows, συμπεριλαμβανομένων και του Windows 10. Μπορεί να μολύνει ακόμη και patched συστήματα αν υπάρχει ένα μη patched PC στο network.
The failure of the NSA and the CIA to keep the tools in their hands gave a very good lesson to everyone who criticized Snowden. Snowden had warned that this could happen.
Collecting information from agencies can cause global damage.
Let's not forget that NotPetya has just started….