A new ransomware attack hit computers around the globe last Tuesday. It targeted government organizations and businesses in Ukraine but also affected companies in the UK, US, France, Norway and Denmark. It is confirmed that this ransomware took advantage of the same vulnerability in old operating systems as WannaCry
While Ukraine was clearly the target, throwing suspicion on Russia, global companies like Merck were collateral damage because the virus spread from offices in Ukraine across global networks. By 2 pm EST on Tuesday, Merck had asked all of its employees to not connect to their network to avoid spreading the infection.
The method to pay the ransom has been rendered useless and the Bitcoin wallet untouched, contributing to the theory that the attack was likely politically motivated, especially as it started on Ukraine’s Constitution Day. The good news is there is a “vaccine” that users can install on their computers to prevent the virus from encrypting the files. The bad news- no kill switch was found and files that are already encrypted are not likely to be salvaged.
The most important thing you can learn and here at Domain, we always emphasize this, is you must be prepared. The cyber world is not safe and we cannot expect to engage in it without security measures in place. Whether you are an individual user or managing the IT environment for a large corporation, protect yourself! The risks are only increasing and the consequences could be severe. If you have any questions about how Domain handles cyber security, visit our website www.domaincybersecurity.com or give us a call. We are always willing to answer your questions!