29 June 2017

Petya ransomware targeting Australia

The discovery of another ransomware virus, Petya, on top of the recent ‘WannaCry’ virus has highlighted the vulnerability of critical information and the importance of taking steps to protect your data.

The latest strain of the Petya ransomware started propagating on June 27th, infecting many organisations. Similar to WannaCry, Petya uses the Eternal Blue exploit as one of the means to propagate itself.

Although not confirmed, it is expected that the initial infection is coming in the attachment of a phishing email or it is downloaded by clicking a link in that email. The virus then spreads very rapidly from the first infected machines to other machines on the network.

Here are some tips to help protect you from infection: 

ransomware-tips-01.jpg

Here's what you need to know: 

Keeping your software up to date is integral, ensure all computers have updated their software upgrades and patches.  

  • Disable the outdated protocol SMBv1
  • Always ensure staff are vigilant for emails that contain suspicious downloads or links. Do not open them from unknown sources
  • If infected, remove the machine from the network as quickly as possible to limit the damage.

 

Contact us for more information on our Fully Managed Service and filtering software.