New wave of cyberattacks spreads from Russia across globe | Inquirer Technology

New wave of cyberattacks spreads from Russia across globe

/ 06:58 AM June 28, 2017

This file photo taken on May 15, 2017, shows staff monitoring the spread of ransomware cyberattacks at the Korea Internet and Security Agency (KISA) in Seoul. AFP

KIEV, Ukraine — A wave of cyberattacks hit Russia and Ukraine before spreading to western Europe and North America on Tuesday, in the second global outbreak of so-called ransomware in less than two months.

Ukraine’s central bank, Kiev’s main airport, the Chernobyl nuclear disaster site, and a string of multinational companies, including US pharmaceutical giant Merck, Russian state oil giant Rosneft, British advertising giant WPP and French industrial group Saint-Gobain, were among the victims.

Article continues after this advertisement

READ: ‘ShadowBrokers’ threatens to release more cyber attack tools

FEATURED STORIES

The virus is similar in its demands to the WannaCry ransomware, which swept the world last month, hitting more than 200,000 users in more than 150 countries. WannaCry locked up files and insisted on payment to regain access to them.

Some IT specialists identified the newcomer as “Petrwrap”, a modified version of ransomware called Petya which circulated last year. But global cybersecurity firm Kaspersky Lab described it as a new form of ransomware, and estimated the number of victims at around 2,000.

Article continues after this advertisement

The virus is “spreading around the world, a large number of countries are affected,” Costin Raiu, a Kaspersky Lab researcher said in a Twitter post.

Article continues after this advertisement

The precise method by which the intruder circulates — such as by email or through a “worm” — remains unclear, specialists said.

Article continues after this advertisement

In France, the national cyber watchdog ANSSI said it was analyzing the attacks and hoped to publish recommendations for users in a matter of hours.

‘Powerful’ attack

Ukrainian Prime Minister Volodymyr Groysman wrote on Facebook that the attacks in his country were “unprecedented” but insisted that “important systems were not affected.”

Article continues after this advertisement

However, the radiation monitoring system at Ukraine’s Chernobyl nuclear disaster site was taken offline.

“Our technicians are measuring radioactivity with Geiger counters onsite at the reactor as was done decades ago,” said Olena Kovaltshuk, spokesman for the government agency managing the exclusion zone around Chernobyl.

The attacks started around 2:00 pm Moscow time (1100GMT) and quickly spread to 80 companies in Ukraine and Russia, said cybersecurity company Group IB.

READ: What we currently know about the global cyberattack

Victims were locked out of their computer and told to purchase a key to reinstate access. The cryptolocker demands $300 in the virtual currency Bitcoin and does not name the encrypting program, which makes finding a solution difficult, Group IB spokesman Evgeny Gukov said.

Some Ukrainian banks were experiencing “difficulty in servicing customers and performing banking operations” due to the attacks, the central bank said in a statement.

Rosneft said its servers suffered a “powerful” cyberattack but thanks to its backup system “the production and extraction of oil were not stopped.”

In the United States, Merck was hit as was New York law firm of DLA Piper.

“We confirm our company’s computer network was compromised today as part of a global hack. Other organizations have also been affected,” Merck said on Twitter.

In Amsterdam, the Dutch parcel delivery company TNT, which operates in 200 countries around the world, said its systems had been affected.

“We are assessing the situation and are implementing remediation steps as quickly as possible,” the company, part of FedEx, said in a statement to AFP.

Vulnerabilities

Sean Sullivan, a researcher at the Finnish cybersecurity group F-Secure, said the attack “seems to be done by professional criminals,” with money as the motivation.

Unlike the recent WannaCry attack, the new attack had sophisticated elements that could make it easier to rapidly infect many more systems, he said.

Experts also said this latest attack could heighten fears that companies may be more vulnerable to cyberattacks than suspected, potentially putting personal data at risk.

“This will undeniably affect trust in these organizations and raise questions of competency,” said Louis Rynsard, a director at the corporate communications agency SBC London.

“The long-lasting impact of a cyberattack cannot be overstated,” he said.

The fight against cyberattacks has sparked exponential growth in global protection spending, with the cyber security market estimated at $120 billion this year, more than 30 times its size just over a decade ago.

Your subscription could not be saved. Please try again.
Your subscription has been successful.

Subscribe to our daily newsletter

By providing an email address. I agree to the Terms of Use and acknowledge that I have read the Privacy Policy.

But even that massive figure looks set to be dwarfed within a few years, experts said, after ransomware attacks crippled computers worldwide in the past week. CBB

TOPICS: cyberattack, Kaspersky Lab, ransomware, Russia, technology, Ukraine, WannaCry
TAGS: cyberattack, Kaspersky Lab, ransomware, Russia, technology, Ukraine, WannaCry

Your subscription could not be saved. Please try again.
Your subscription has been successful.

Subscribe to our newsletter!

By providing an email address. I agree to the Terms of Use and acknowledge that I have read the Privacy Policy.

© Copyright 1997-2024 INQUIRER.net | All Rights Reserved

This is an information message

We use cookies to enhance your experience. By continuing, you agree to our use of cookies. Learn more here.