If you haven’t heard yet, there’s yet another global ransomware attack spreading around the globe.
As of right now (1:40 pm CST) there doesn’t seem to be a consensus on what type of ransomware it is. Some are claiming it’s a modified version of the Petya ransomware strain, yet others are saying it’s a new strain altogether. Anti-virus firm Kaspersky Labs has gone as far as to call this NotPetya, even though it has some of the same characteristics.
Early breakdowns indicate that this infection is also using EternalBlue and other exploits released through Wikileaks’ release of internal NSA hacks.
In the words of “Mad Eye” Moody, “constant vigilance” is called for:
- Validate your firewall policies
- Make sure anti-virus and anti-ransomware products are up-to-date and running on all machines
- Segregate critical network segments
- Isolate un-patchable machines
- Don’t click on email links
For more information on the outbreak here are some links to outside news sources: