Not much impact of Ransomware attack on India yet
The government of India said it has initiated proactive measures and is keeping a close vigil on the ransomware attack that has hit Europe, maintaining that there is no large-scale impact on India yet.
Jawaharlal Nehru Port Trust (JNPT), where one of three terminals was impacted by Petya global ransomware spreading . The Gujarat Pipavav Port was also partially impacted.
Brief Information of Ransomware
- Ransomware is a type of malware that blocks access to a computer or its data and demands money to release it.
- When a computer is infected, the ransomware encrypts important documents and files and then demands a ransom, typically in Bitcoin, for a digital key needed to unlock the files. If victims don’t have a recent back-up of the files they must either pay the ransom or face losing all of their files.
Petya global ransomware
- Many organizations in Europe and the US have been crippled by a ransomware attack known as “Petya”. The malicious software has spread through large firms including the advertiser WPP, food company Mondelez, legal firm DLA Piper and Danish shipping and transport firm Maersk, leading to PCs and data being locked up and held for ransom.
- It’s the second major global ransomware attack in the past two months. In early May, Britain’s National Health Service (NHS) was among the organizations infected by WannaCry,
The functioning of Petya global ransomeware
The ransomware takes over computers and demands $300, paid in Bitcoin. The malicious software spreads rapidly across an organization once a computer is infected using the EternalBlue vulnerability in Microsoft Windows (Microsoft has released a patch, but not everyone will have installed it) or through two Windows administrative tools. The malware tries one option and if it doesn’t work, it tries the next one. “It has a better mechanism for spreading itself than WannaCry.
The Petya/Notpetya ransomware is the second major global ransomware since WannaCry hit over 3,00,000 computers across 200 countries in May. P
The WannaCry ransomware attack was a May 2017 worldwide cyberattack by the WannaCry ransomware cryptoworm, which targeted computers running
The Microsoft Windows operating system by encrypting data and demanding ransom payments in the Bitcoin cryptocurrency.
WannaCry’s damage was quickly minimised due to sloppy coding
Ways to protect the devices
- Make sure Microsoft Windows and all third party softwares are updated.
- Don’t open attachments in unsolicited e-mails, even if they come from people in your contact list.
- Never click on a URL contained in an unsolicited e-mail, even if the link seems benign.
- Maintain updated Antivirus software on all systems.
- Ensure the web browsers are secured enough with appropriate content controls.
- Individuals or organizations are not encouraged to pay the ransom, as this does not guarantee files will be released. Report such instances of fraud to CERT-In and Law Enforcement agencies.
- Cybercrime is defined as a crime in which a computer is the object of the crime (hacking, phishing, spamming) or is used as a tool to commit an offense (child pornography, hate crimes).
- Cybercriminals may use computer technology to access personal information, business trade secrets or use the internet for exploitive or malicious purposes.
- Criminals can also use computers for communication and document or data storage. Criminals who perform these illegal activities are often referred to as hackers.