Request Information
1.877.459.4347

Request Information

or Call 1.877.459.4347

Global Ransomware Virus Hits Europe Hard, US More Gently

Global Ransomware Virus Hits Europe Hard
June 28, 2017 / Evolve IP

Here’s some sound ransomware virus protection advice:

“The best way to protect yourself and your organization is to have a backup of your data, maintain it, and disconnect it from your computer.”

The sentiment in this quote, which appeared on the FBI website just 4 days ago, was echoed by security experts today in light of a global ransomware virus attack that occurred today, primarily in Europe. Among the directly impacted were the Ukrainian power grid, banks and government offices, Russia’s Rosneft oil company, and Danish shipping giant A.P. Moller-Maersk. With critical infrastructure such as power and water resources under attack, it is hard to ignore the severity of this ransomware virus and threat of cyberattacks in general. This incident serves as the latest evidence that the entire world should be preparing for the worst when it comes to the proposition that servers, systems and data can be rendered inaccessible any moment.

While the US was not as severely hit, several organizations, most notably a Pennsylvania-based healthcare organization (Heritage Valley Healthcare System) and pharmaceutical giant Merck, were impacted by this ransomware virus attack. According to a statement from the HITRUST organization (who provides the world’s most comprehensive security framework for the healthcare industry), this is a “serious incident.” This judgment is based on the fact that that many healthcare firms have been impacted; there are reports that care delivery was impacted and that the ransomware virus was rapidly spreading to other systems and other countries.

Security companies agree that this ransomware virus strain, called Petya uses the same exploit in Microsoft products as WannaCry. It locks computers and encrypts the files on them preventing any user access. Instead of their normal access view, users are presented with the message, “If you see this text, then your files are no longer accessible, because they have been encrypted.” The ransom demanded to unencrypt the files is 300 bitcoin. Further, HITRUST confirmed that:

  • This ransomware virus is using NSA’s EternalBlue code.
  • This ransomware worm variant does not seem to have a “KillSwitch” like WannaCry v2.0.
  • Organizations who having implemented the HITRUST CSF (Common Security Framework) controls (inclusive of Evolve IP as part of our HIPAA compliance and HITRUST certification efforts) would appropriately address the threat.

Get the facts on ransomware with our Ransomware is Dead Webinar:

 

Ransomware is Dead

As with WannaCry, only outdated computing networks were vulnerable. There were widely available patches that could have prevented the attack. But as pointed out by Chris Wysopal, Chief Technology Officer at the security firm Veracode, 100 percent of computers must be patched the new malware has a backup mechanism that allows it spread to patched computers within the network as well. Wysopal says the attack seems to be hitting large industrial companies that “typically have a hard time patching all of their machines because so many systems simply cannot have down time.”

Issuing a dire outlook based on today’s attack, former CIA chief Leon Panetta said, “we are now living at a time when the use of a sophisticated virus in the cyber arena can virtually cripple our country.” While in agreement with that concern, cybersecurity expert Leeza Garber explained that business continuity is possible even in the face of such attacks, when organizations exercise a level of proactivity. Specifically, she said companies should have:

  • Proactive protection of systems against such attacks, and
  • Proactive and complete backups of your systems and data – this includes plans on how can you recover those backups and get back to business

Categories: General Healthcare
Listening To Needs. Solving Complex Challenges.

Helping enterprise IT focus on business results, not infrastructure

  • One of the nation’s largest and fastest-growing dermatology businesses estimates savings of $6.45 Million over 5 years

    View Case Study

    “Evolve IP’s digital workspaces have allowed us to acquire more practices in a faster and more profitable way. That is resulting in bottom-line cost savings and top-line business benefits.”

    – Jeff Francis, Vice President of IT USDP

  • International Law Firm Drives Communications Reliability Across 60+ Worldwide Locations and Saves Over $300,000 a Year

    View Case Study

    “That’s the type of proposition I like to bring to a Board of Directors. When I can say, ‘we can get everything new, be completely redundant, it can meet all of our needs and oh, by the way, we are going to save over $300,000 a year.’ It makes it easy for me to sell!”

    – Ken Schultz CIO of Ogletree Deakins

  • Financial advisory firm enables employees to Work Anywhere with integrated platform

    View Case Study

    “The transition has been almost seamless to our folks, working from home full time. My team looks like heroes right now.”

    Ryan Easter, Director of IT and Principal at Johnson Investment Counsel

Simplify and future-proof your technology footprint with Evolve IP

It's nearly impossible to stay on top of every technology change. Partner with Evolve IP and gain the combined experience of hundreds of technologists, all acting as an extension of your IT team. Helping you do more with less.

close

Contact Us

or Call 1.877.459.4347