||| Nyetya |||
A new map warehouse variant has taken the world by storm crippling systems across Europe and even spreading into the United States.
Unlike the ‘WannaCry’ variant, this particular infection does not appear to have an external scanning component which is making it difficult to counter or even trace its origins.
Cisco has said that Nyetya is, "WannaCry's bad cousin" and "initial vector identification has shown that the virus is more defiant."
This vicious cyber attack began with Russia and Ukraine on Tuesday and is now spreading to Asia and Australia and parts of the UK and America on Wednesday.
Nyetya is also very similar to WannaCry, the ransomware which hit 200,000 people in 150 countries last month, encrypting their data on infected computers and asking for a ransom to recover them.
Operations at one of the three major terminals at India's largest individual container port JNPT, which is located in Mumbai, have been disrupted by the global ransomware attack.
The terminal affected by the attack is linked electronically to Danish shipping giant AP Moller-Maersk, which also said separately on Tuesday that the cyberattack had caused outages in its computer systems globally.
Russia's leading oil producer Rosneft said that its own servers had been hit be a massive cyber attack but oil production was unaffected.
Danish shipping company A.P. Moller-Maersk, the giant which handles one out of seven containers shipped into every nation globally, said a cyberattack had caused outages at its computer systems across the world.
The world's largest advertising company, Britain's WPP, said their computer systems across multiple of its agencies had been hit by a suspected cyber attack.
Stock Market kingpin Merck & Co said their Pharmaceutical company has had its computer network compromised as part of a global hack.
In the financial sector, Russia's central bank said there had been "computer attacks" on Russian banks and that in isolated cases their IT systems had been infected.
All Russian branches of Home Credit consumer lender globally are now closed because of a cyber attack, the call center in Russia said.
Even popular candy manufacturer Mars Inc, responsible for dozens of brands including ‘Milky Way’ candy bars, has also been targeted by cyber attackers. The company has now isolated the issue, a spokeswoman for the company said.
According to Talos Intelligence, they place a strong emphasis on not paying this ransom if you're affected by the virus.
In a direct quote Talos wrote, “As with all ransomware, Talos does not recommend paying the ransom. With this specific piece of ransomware, it should be noted that the associated mailbox used for payment verification and decryption key sharing has been shut down by the poster.de website. This renders any successful payment as useless - there is no method of communication available for this attacker to use to verify payments from victims or distribute decryption keys once ransom payments have been received.”
In what appears to be a new age of digital warfare there are multiple fronts in which seemingly have been hit by this global attack. Nyetya has hit the world like an asteroid.
Source :
http://blog.talosintelligence.com/2017/06/worldwide-ransomware-variant.html
