Ransomware Alert: 'Petya' Wreaking Havoc

Ransomware Alert: ‘Petya’ Wreaking Havoc

If the recent ‘Wannacry’ Ransomware didn’t get you thinking about your cyber security, ‘Petya’ will!

WHAT IS PETYA?

Overnight, reports have emerged of a new cyber attack, ‘Petya’, causing major havoc across the globe including here in Australia where Mondelez have been forced to close their Hobart Cadbury factory due to infection by the ransomware. ‘Petya’, similar to the recent ‘WannaCry’ virus, preys on Microsoft Windows vulnerabilities and encrypts and locks files on a computer when the user opens an infected file or URL received via email. The virus then spreads across the network and demands a ransom sum to be paid in Bitcoin to retrieve the files.

THE GOOD NEWS:Business customers with Sophos Intercept X installed are already protected from Petya.

THE BAD NEWS

This Ransomware is believed to be targeting both businesses and individuals, if you are not currently protected by Sophos Intercept X (business customers only) or Sophos Home Premium Beta you could be at risk.

BLACKBIRD IT SUGGEST TAKING THE FOLLOWING ACTIONS IMMEDIATELY TO HELP AVOID INFECTION BY ‘PETYA’:1. Ensure systems have the latest patches, including the one in Microsoft’s MS17-010 bulletin.2. Consider blocking the Microsoft PsExec tool from running on users’ computers. A version of this tool is used as part of another technique used by Petya to spread automatically. You can block it using a product such as Sophos Endpoint Protection.3. Back up your data regularly and keep a recent backup copy off-site. There are dozens of ways other than Ransomware that files can suddenly vanish, such as fire, flood, theft, a dropped laptop or even an accidental delete. Encrypt your backup and you won’t have to worry about the backup device falling into the wrong hands.4.Avoid opening attachments in emails from recipients you don’t know, even if you work in HR or accounts and you use attachments a lot in your job.

5. Download the free trial of Sophos Intercept X and, for home (non-business) users, register for the free Sophos Home Premium Beta, which prevents Ransomware by blocking the unauthorised encryption of files and sectors on your hard disk.

TO AVOID CYBER ATTACKS THAT SNEAK IN VIA EMAIL, SEE THESE HELPFUL ARTICLES FROM SOPHOS:1. To defend against Ransomware in general, see article How to stay protected against Ransomware.2. To get a better understanding of phishing, read this explainer article.3. To protect against JavaScript attachments, tell Explorer to open .JS files with Notepad.4. To protect against misleading filenames, tell Explorer to show file extensions.

FREE SOPHOS CENTRAL ADVANCEDTo help you stay ahead of the pack and ensure you’re best protected against cyber threats such as ‘ Petya’ and ‘WannaCry’, Blackbird IT are teaming up with Sophos to offer Central Endpoint Advanced FREE with any purchase of Sophos Intercept X for organisations with under 50 users. That could save you over $6000! Hurry, this offer end June 30, 2017!If you are unsure if you have been infected, are concerned about your web security or would like to take advantage of our limited time Sophos offer, contact our Sales team on
08 7324 7777 (ext 3) or email us today.Kind regards,The Blackbird IT Team
3 Boskenna Avenue
Norwood SA 5067
Ph: (08) 7324 7777

Ransomware, Sophos