Today: Saturday, 27 April 2024 year

Last news

Cyprus reported the resumption of humanitarian aid supplies to Gaza.
Trudeau said Canada is following the United States in exploring its options regarding TikTok.
Biden admitted that after the death of his wife and daughter he thought about suicide.
Scholz commented on the negotiations between Baku and Yerevan.
Blinken told Wang Yi that the US has no intention of getting into conflict with China.
The Chinese Foreign Minister assessed the situation in the Taiwan Strait.
The owner of TikTok said that he has no plans to sell the application.
The Swedish Prime Minister announced the end of military integration into NATO.
China commented on the US deployment of medium-range missiles in the Asia-Pacific region.
Biden and Trump are equal in terms of voter support.
Our choice

Last news for today

07 : 31
Cyprus reported the resumption of humanitarian aid supplies to Gaza.
19 : 17
Trudeau said Canada is following the United States in exploring its options regarding TikTok.
18 : 06
Biden admitted that after the death of his wife and daughter he thought about suicide.
13 : 54
Scholz commented on the negotiations between Baku and Yerevan.
10 : 04
Blinken told Wang Yi that the US has no intention of getting into conflict with China.
07 : 24
The Chinese Foreign Minister assessed the situation in the Taiwan Strait.
 More news

Petya ransomware attack: can it be stopped?

Petya ransomware attack: can it be stopped?

The ‘Petya’ ransomware is still attacking, the harmful virus has already caused serious disruption at many companies throughout the world. Virus’s targets are rich firms, financial institutions and insurance companies.

In Russia, the victims of Petya ransomware became the Russian steel and oil firms Evraz and Rosneft. In Europe, shipping and transport firm AP Moller-Maersk from Denmark and Heritage Valley Health System from Pittsburgh caught the virus, too – all of them received ransom note includes the same Bitcoin payment address.

The security experts say that most ransomware creates a custom address for every victim, and the payment mechanism of the attack seems too amateurish to have been carried out by serious criminals. Firs of all, the ransom message indicates a custom address for every victim.

Shipping company Maersk’s IT system was impacted by the cyber-attack.

Secondly, Petya asks victims to communicate with the attackers via a single email address which has been suspended by the email provider after they discovered what it was being used for. This means that even if someone pays the ransom, they have no way to communicate with the attacker to request the decryption key to unlock their files.

Petya ransomware: how to defend while forced rebooting

The ransomware infects computers and then waits for about an hour before rebooting the machine. While the machine is rebooting, you can switch the computer off to prevent the files from being encrypted and try and rescue the files from the machine, as flagged by @HackerFantastic on Twitter.

If the system reboots with the ransom note, don’t pay the ransom – the “customer service” email address has been shut down so there’s no way to get the decryption key to unlock your files anyway. Disconnect your PC from the internet, reformat the hard drive and reinstall your files from a backup. The common recommendation is still the same for every user under any circumstances: please, back up your files on regular basis. Plus, keep your anti-virus software up to date, that’s important.

‘Praemonitus preamunitus,’ this old Latin proverb is actual as never befoore – forewarned is forearmed.

Read more