NotPetya and not Simple Petya: NSA the US National Security Service began using a hacking tool called EternalBlue five years ago. During this time, the service violated the networks, using a flaw that they should immediately disclose to Microsoft.
The NSA finally disclosed the vulnerability to Microsoft earlier this year, but only after the exploits were stolen and then released on the Internet.network. Microsoft immediately issued a "critical" patch (in March), and from May WannaCry began to circulate. A ransomware used by EternalBlue to infiltrate Windows computers. This particular malware managed to infect over 230.000 computers in over 150 countries.
Yesterday we met NotPetya.
NotPetya is similar to Petya ransomware, but it belongs to its own classification, according to security researchers. Both used EternalBlue exploit, but their similarities did not stop there.
NotPetya is a completely new form of ransomware that has been used since yesterday to break into Chernobyl's radiation detection system, the Kyiv metro, on banks and in at least one US hospital.
Η Kaspersky claims that at least 2.000 businesses and institutions around the world have been affected in the last 24 hours.
The latest on #petya #notpetya #ExPetr & @Securelist blog https://t.co/PK5R7sOsNO #YARA pic.twitter.com/CfuprRudf2
- Kaspersky (@kaspersky) June 27, 2017
And WannaCry, it was devastating, but it was an impossible tool full of bugs created by amateurs.
NotPetya, according to experts, is not an amateur tool.
“That's great. Really great, ”former NSA analyst David Kennedy told Forbes.
Unlike WannaCry, which contained a Switch kill to be able to disable it remotely. That's it new ransomware it has no equivalent.
The bad news is that it can infect any version of Windows, including Windows 10. It can infect even patched systems if there is an unpatched PC on the network.
The failure of the NSA and CIA to keep the tools in their hands it taught all those who criticized Snowden a very good lesson. Snowden had warned that something like this could happen.
Collecting information from agencies can cause global damage.
Let's not forget that NotPetya has just started….