Petya Ransomware Virus

Petya Ransomware Virus

Well, it is back! the newest variant of the Wannacry ransomware virus is out causing mayhem and destruction and its called Petya Ransomware. This time there is no kill switch that can be enabled.

The virus which started on Friday seems to have originated in the Ukraine and has been found in more than 64 countries and has hit more than 13,000 computers. This virus has the potential to be bigger than the Wannacry Variant.

Once infected users will find a screen demanding the user pay a $300 payment in Bitcoin to provide the key to restore encrypted files.

This new threat is based on an exploit stolen from the National Security Agency (NSA). A patch to address this vulnerability was issued by Microsoft in March 2017. You can find links to the patch at the bottom of this page: https://www.cnet.com/how-to/petya-goldeneye-malware-ransomware-protect-yourself-against/

It is known to use a Microsoft Windows flaw called EternalRomance.

It is spread by people using an accounting program called MeDoc that is very popular in the Ukraine.

Petya is designed to spread through the networks of a business and uses a hacking tool called Mimikatz to extract passwords from those computers.

It is not currently known who is behind the attack.

Screenshot that users will see once Petya Ransomware is done encrypting your computer.

Screenshot that users will see once Petya Ransomware is done encrypting your computer.

 

For assistance with this latest threat or any other Computer needs please call us @ 780-413-9908 or visit our website @ www.generation.ca

 

 

No Comments

Leave a Comment