Petya Ransomware Spreads Quickly, Wreaks Havoc Across the Globe

By Marcos Colon

Yet another global ransomware attack which initially sparked in the Ukraine has spread across the world impacting organizations across industries.

At the heart of the cyber assault is a variant of the Petya ransomware dubbed “Goldeneye,” which leverages the EternalBlue exploit to spread from one computer to another, according to researchers at Bitdefender Labs.

The ransomware has affected major companies in Spain, India, the UK, and the U.S. The biggest impact, however, has been on the Ukraine, where the government, banks, state power utilities, and Kiev’s airport and metro system have been affected, according to a report by The Guardian.

This attack is at the scale of the recent WannaCry ransomware worm infections, which also took advantage of the EternalBlue exploit, resulting in more than 200,000 companies being impacted by the attack in May.

Security researchers are scrambling to analyze the ransomware that has spread very quickly, with some suggesting that patching EternalBlue won’t do the trick.

“Just patching with EternalBlue (MS17-010) doesn’t appear to save you – other techniques for lateral movement in play here it looks like,” tweeted Dave Kennedy, founder of TrustedSec.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.