crn5000-inc2015 BPTW logo
Contact us today!
(918) 770-8738
 
 

Integrated Business Technologies Blog

Integrated Business Technologies has been serving the Broken Arrow area since 2007, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.

Latest Ransomware Attack is Brutal Reminder of Cyber Security Importance

A new malware swept across the globe Tuesday, incorporating facets of many ransomwares that have made headlines recently. While it originally appeared to be a variant of the Petya ransomware, it has been determined that it shares more in common with WannaCry. However, “NotPetya,” as it has been named, has a few additional features that experts say make it worse than either of its predecessors.

Why NotPetya Isn’t Really a Ransomware
The first clue that researchers had that NotPetya had a different motivation was the fact that the ransom only demanded the Bitcoin equivalent of $300. Secondly, the only means of getting the decryption key was to send an email to an address hosted by German email provider Posteo. Despite the lack of preparation the payment method appeared to have, NotPetya itself was clearly designed to be able to infiltrate as many networks as possible and do maximum damage once inside.

A Hybrid Hacking Attack
Since the attack commenced, researchers have ascertained that despite its initial similarities with Petya, NotPetya shares many traits with other malicious programs. Like WannaCry, the attack that affected much of Europe, NotPetya leverages EternalBlue. EternalBlue is a National Security Agency hacking tool that targets unpatched systems and steals the passwords that allow administrator access. In addition to EternalBlue, NotPetya also utilizes EternalRomance, another code that was stolen from the NSA.

Once NotPetya has infected one computer, it extracts passwords from its memory or the local filesystem to allow itself to spread--including onto updated and patched Windows 10 systems.

How To Protect Your Files
First off, don’t expect that you can retrieve your files just by paying the ransom. Even if those responsible for NotPetya intended to keep their word and return them once paid, Posteo has shut down the provided email account victims were to receive their keys from. As a result, unless a victim was already following certain best practices, their files are as of yet unrecoverable.

However, this does not mean that everyone is vulnerable to this attack. Before the EternalBlue and EternalRomance exploits were distributed on the dark web, Microsoft had already released patches for the vulnerabilities. However, if these patches were not applied, a user’s systems were (and are) still vulnerable.

The best method to avoid infection from this kind of attack is to ensure your users understand the importance of cyber security efforts, and that all of your business’ systems are reinforced against the latest threats by keeping your defenses up-to-date.

Furthermore, even an infected user is not without hope if they have been backing up their files. If they have done so, all they have to do is disconnect their computer from the Internet, reformat their hard drive and restore their data from their backup solution. However, for this to work, you have to also be sure that your backups are up-to-date, and that your backup is stored in an isolated location, separate from your network.

Integrated Business Technologies has the experience and expertise to help prevent you from becoming a victim of a malware like this, whether we help you manage your backups or help educate your users to avoid attacks like these in the first place. Give us a call at (918) 770-8738 today.

 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Saturday, 24 February 2018
If you'd like to register, please fill in the username, password and name fields.

Captcha Image

Sign Up for Our Newsletter

  • First Name *
  • Last Name *

      Free Consultation

      Sign up today for a
      FREE Network Consultation

      How secure is your IT infrastructure?
      Let us evaluate it for free!

      Sign up Now!

      freeconsultation
       

      Tag Cloud

      Security Technology Tip of the Week Business Management Privacy Managed Service Provider Internet Microsoft Cloud Saving Money Productivity Business Computing Workplace Tips IT Services Best Practices Backup Hackers Hosted Solutions Mobile Devices Email Small Business Business Malware IT Support Software Hardware Network Smartphones Data Server Communication Upgrade Windows Business Continuity Mobile Device Management VoIP Google Virtualization Efficiency Microsoft Office Disaster Recovery Computer Miscellaneous Mobile Office Vendor Management Gadgets Holiday Innovation Social Media Android Quick Tips BYOD User Tips Outsourced IT Mobile Computing Smartphone Windows 10 WiFi Browser Best Practice Bring Your Own Device Passwords Remote Monitoring Internet of Things The Internet of Things Trending Operating System Apple Network Security Users Spam Wireless Technology Alert Going Green Managed IT services Firewall Content Filtering Remote Computing History Managed IT Printer Tech Support Ransomware Analytics IT Solutions Save Money Lithium-ion Battery Current Events Information Technology IT Consultant Gmail Data Backup Big Data Unified Threat Management Office Data Management Humor Saving Time Facebook Avoiding Downtime Encryption Antivirus Maintenance Hard Drives App Customer Relationship Management Artificial Intelligence Windows 8 Marketing Excel Automation Office Tips Retail Phone System Phishing Data Recovery IT service Apps Application Business Growth Virus Employer-Employee Relationship Fax Server Document Management Customer Service Hacking Computers Outlook Digital Payment Health Risk Management Collaboration Two-factor Authentication Tablet Data Security Budget Router Inbound Marketing Cybersecurity iPhone Recovery Money Administration Applications Augmented Reality Running Cable Licensing Chrome Training Proactive IT Computer Repair Mouse User Error Co-Managed IT Net Neutrality Office 365 Project Management Social Password Mobile Device VPN PowerPoint Presentation Search Unified Communications Virtual Desktop USB Printing Business Owner End of Support Scam LiFi Computing Intranet Hacker Tip of the week Programming Business Intelligence User Mobility Analyitcs Government Education Safety Specifications Settings Piracy Wireless Cybercrime Files Save Time Sports Wi-Fi Hiring/Firing Point of Sale Help Desk HIPAA Redundancy Website Statistics Bandwidth IBM Managed IT Services Flexibility Hosted Solution Competition Network Congestion File Sharing Wearable Technology Data storage Paperless Office Downtime Social Networking Mobile Security Display Alerts Robot Distributed Denial of Service Knowledge Value Environment eBay Travel Hotspot Multi-Factor Security Remote Support Windows 10 Leadership Samsung Virtual Reality Debate Skype Managed IT Service Experience Streaming Media Techology Troubleshooting New Additions Heating/Cooling Text Messaging Scheduling Language Print Server Google Calendar Work Station Consumers Monitors Crowdfunding SaaS Deep Learning LinkedIn Break Fix Disaster Resistance Congratulations Law Firm IT Video Surveillance Google Wallet Computing Infrastructure Windows 8.1 Update Legislation IP Address Recycling Server Management Writing Best Available Dark Web IT Consulting Refrigeration Cloud Computing Disaster Drones Cooperation Buisness Social Engineering Telephony Identities Data Warehousing Data Breach Bluetooth Cost Management Software Tips Digital Signature Backups Staff CIO Online Currency Software as a Service Vulnerability Memory Macro Solid State Drive Microsoft Excel Laptop Technology Laws Computer Accessories Legal Operations Technology Tips Virtual Private Network Documents Compliance Entrepreneur Private Cloud Alt Codes Blockchain Halloween Unified Threat Management Undo Infrastructure People YouTube Company Culture Comparison 5G Twitter Gaming Console PDF Regulations Access Control Public Cloud Typing Permissions Scary Stories Touchscreen IT Support Google Drive IT Technicians How To Black Friday SharePoint Sync Cryptocurrency Fraud Domains Google Docs Mirgation Cyber Monday Fun Business Technology Downloads Word Mobile Device Managment Bitcoin Internet Exlporer Public Speaking Data loss Adminstration communications Smart Technology Cortana Conferencing Networking 3D eWaste Productivity Hacks IT Management PC Care

      Top Blog

      Basically, any machine that uses fans and vents to cool itself can overheat if airflow is restricted. If you have used a laptop on your lap for an extended session, then you know what we are talking about when the computer becomes hot to the touch. Every portable device is designed a little diffe...
      QR-Code