Contact us today!
866-348-2602

Total Tech Care Blog

Total Tech Care has been serving Florida since 2001, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.

Latest Ransomware Attack is Brutal Reminder of Cyber Security Importance

Latest Ransomware Attack is Brutal Reminder of Cyber Security Importance

A new malware swept across the globe Tuesday, incorporating facets of many ransomwares that have made headlines recently. While it originally appeared to be a variant of the Petya ransomware, it has been determined that it shares more in common with WannaCry. However, “NotPetya,” as it has been named, has a few additional features that experts say make it worse than either of its predecessors.

Why NotPetya Isn’t Really a Ransomware
The first clue that researchers had that NotPetya had a different motivation was the fact that the ransom only demanded the Bitcoin equivalent of $300. Secondly, the only means of getting the decryption key was to send an email to an address hosted by German email provider Posteo. Despite the lack of preparation the payment method appeared to have, NotPetya itself was clearly designed to be able to infiltrate as many networks as possible and do maximum damage once inside.

A Hybrid Hacking Attack
Since the attack commenced, researchers have ascertained that despite its initial similarities with Petya, NotPetya shares many traits with other malicious programs. Like WannaCry, the attack that affected much of Europe, NotPetya leverages EternalBlue. EternalBlue is a National Security Agency hacking tool that targets unpatched systems and steals the passwords that allow administrator access. In addition to EternalBlue, NotPetya also utilizes EternalRomance, another code that was stolen from the NSA.

Once NotPetya has infected one computer, it extracts passwords from its memory or the local filesystem to allow itself to spread--including onto updated and patched Windows 10 systems.

How To Protect Your Files
First off, don’t expect that you can retrieve your files just by paying the ransom. Even if those responsible for NotPetya intended to keep their word and return them once paid, Posteo has shut down the provided email account victims were to receive their keys from. As a result, unless a victim was already following certain best practices, their files are as of yet unrecoverable.

However, this does not mean that everyone is vulnerable to this attack. Before the EternalBlue and EternalRomance exploits were distributed on the dark web, Microsoft had already released patches for the vulnerabilities. However, if these patches were not applied, a user’s systems were (and are) still vulnerable.

The best method to avoid infection from this kind of attack is to ensure your users understand the importance of cyber security efforts, and that all of your business’ systems are reinforced against the latest threats by keeping your defenses up-to-date.

Furthermore, even an infected user is not without hope if they have been backing up their files. If they have done so, all they have to do is disconnect their computer from the Internet, reformat their hard drive and restore their data from their backup solution. However, for this to work, you have to also be sure that your backups are up-to-date, and that your backup is stored in an isolated location, separate from your network.

Total Tech Care has the experience and expertise to help prevent you from becoming a victim of a malware like this, whether we help you manage your backups or help educate your users to avoid attacks like these in the first place. Give us a call at 866-348-2602 today.

 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Wednesday, 25 December 2024
If you'd like to register, please fill in the username, password and name fields.

Blog Archive

Sign Up for Our Newsletter

  • First Name *
  • Last Name *

      Free Consultation

      Sign up today for a
      FREE Network Consultation

      How secure is your IT infrastructure?
      Let us evaluate it for free!

      Sign up Now!

      Free Consultation
       

      Tag Cloud

      Security Tip of the Week Technology Best Practices Business Computing Cloud Privacy Hackers Productivity Hosted Solutions Efficiency Software Business Google Network Security Microsoft Internet Email Malware Backup Workplace Tips Innovation User Tips Data Computer Mobile Devices Hardware IT Services Disaster Recovery Android VoIP communications Business Continuity Smartphones IT Support Communication Smartphone Miscellaneous Mobile Device Small Business Network Browser Collaboration Productivity Quick Tips Cybersecurity Business Management Users Windows Upgrade Phishing Managed IT Services Data Backup Outsourced IT Ransomware Windows 10 Office Server Save Money Cloud Computing Data Recovery Windows 10 Passwords Gadgets Tech Term Saving Money Holiday Chrome Virtualization Social Media Microsoft Office Automation Managed IT Services Managed Service Cybercrime Artificial Intelligence Operating System Facebook Computers BYOD Health Mobile Device Management Wi-Fi Networking IT Support Hacking Internet of Things Remote Alert Spam Covid-19 Managed Service Provider Office 365 Telephone Systems Information Information Technology Recovery Employer-Employee Relationship Bandwidth Social Engineering Mobility Router BDR Application Human Resources Password Money Remote Monitoring Encryption Big Data Applications App History Law Enforcement Data Breach Mobile Computing Managed IT Remote Computing How To Apps Mobile Office Data Storage Patch Management Blockchain Paperless Office Office Tips Government Training VPN Private Cloud IT solutions Settings Infrastructure Entertainment Voice over Internet Protocol Website Budget Two-factor Authentication Bring Your Own Device Data Security Data Management Work/Life Balance Mouse HaaS Google Drive Vulnerability Windows 7 Wireless Word Avoiding Downtime Flexibility Marketing Gmail WiFi Servers Save Time Firewall USB Virtual Reality Apple Cleaning Vendor Data Protection Social Managed Services Display User Error End of Support Meetings Physical Security Education Safety Employee/Employer Relationship HIPAA Sports Redundancy Conferencing RMM Risk Management Keyboard Hacker Scam Telephone System Staff Software as a Service The Internet of Things Machine Learning Lithium-ion battery Remote Work Connectivity Vendor Management Printer Identity Theft Solid State Drive Customer Service Wireless Technology Unsupported Software Downtime Bluetooth Environment How to Procurement Net Neutrality Workplace Strategy Charger Fax Server Data storage Help Desk Compliance Automobile Printing Augmented Reality OneNote Computer Care Current Events Fraud SaaS IT Consultant Telephony Computing Infrastructure Remote Worker Samsung Managed Services Provider Going Green Network Congestion Cryptocurrency Humor Value eWaste Database Spam Blocking Electronic Medical Records Battery Remote Workers Comparison Shadow IT Legal Processor CES Hiring/Firing Wearable Technology Internet Exlporer Hard Drives Hard Drive Retail Instant Messaging Business Technology Content Management PDF Robot Excel Access Control Computing Biometrics Virtual Assistant Virus Virtual Desktop Proactive IT Business Intelligence Authentication Best Practice Audit Unified Threat Management Worker Computer Accessories DDoS YouTube IT Management Black Market SharePoint Digital Signage Botnet Update IT Plan Document Management Google Docs Devices IBM AI IT Infrastructure Administrator Bing Flash Enterprise Content Management FinTech Smart Technology Social Network Antivirus Files MSP Accountants Windows 8 Thought Leadership Printer Server Supercomputer Credit Cards Investment Microchip Chromecast Software Tips IT service Sync Password Management Emails Password Manager Employees Employee/Employer Relationships Multi-Factor Security Colocation ISP Uninterrupted Power Supply Windows 365 Tablet Twitter Video Conferencing ROI Search Engine Domains Monitor Shortcuts NIST Netflix Business Mangement Sales Two Factor Authentication Bitcoin Trending Personal Cryptomining Root Cause Analysis Smart Tech Point of Sale HBO Addiction Knowledge Amazon Supply Chain Management Music IaaS Maintenance Reputation Skype Bloatware Streaming Media Recycling Monitoring Batteries Content Digitize Wiring Tech Support Data loss Practices Windows 8.1 Outlook Tablets Cache Leadership Amazon Web Services Troubleshooting Techology Windows Server 2008 R2 Laptop Customers Start Menu Entrepreneur Safe Mode Criminal Customer relationships Email Best Practices Loyalty Audiobook IT Assessment Manufacturing GDPR Consultant Screen Mirroring Hosted Computing Frequently Asked Questions Wireless Internet Analytics Online Shopping Books Shortcut Touchpad Managed IT Service Security Cameras Mobile Cost Management File Sharing Windows 10s Computer Tips Virtual CIO Specifications Politics OneDrive Advertising Biometric Security Social Networking Camera Best Available Cast Inventory WIndows 7 Tip of the week Wire webinar Evernote Peripheral Emergency Using Data Professional Services Notifications Public Cloud Digital Security Cameras Employer Employee Relationship Travel Assessment Millennials Copiers Running Cable 5G Printers Windows Server 2008 Memory Smart Office Wireless Charging Quick Tip Relocation Smartwatch Tools Ergonomics Television Workforce Development OLED Virtual Private Network User PowerPoint Cables PCI DSS Windows Media Player Video Games Virtual Machine Worker Commute Fiber Optics Employee 2FA Public Computer Telecommuting Experience Messaging Cabling Project Management Science Nanotechnology Managing Stress Regulations Cortana Policy Transportation Scalability Hypervisor Business Owner Trend Micro Computer Fan Digital Signature Dark mode Rootkit Cameras SMS Distributed Denial of Service Default App Customer Relationship Management Warranty NarrowBand Analyitcs HVAC Workers Google Apps Procedure Benefits Search Saving Time Shopping iPhone Google Search Programming FENG Analysis dark theme

      Top Blog

      The reasoning for this is simple: you want to make sure that operations are proceeding as intended, even if you’re not there. If you completely check out from the workplace every time you leave, you could return from your vacation to a complete and total disaster that may have been prevented with y...
      QR-Code