Last week, a Ukrainian software company pulled off an incredible global operation, yet of mischievous intentions. Their NotPetya virus infiltrated thousands of computers in a massive cyber attack. The organization resurfaced on Wednesday to warn about a new threat. All infected systems might still be vulnerable to a second hacking attempt.
Hackers Attacked Intellect Service Headquarters to Create a Back Door for NotPetya Virus
Some experts nicknamed the virus “NotPetya” due to its resemblance to the original Petya. However, there are enough differences to categorize it as a new type of cyber ransomware. The code uses EternalBlue at its basis, which is a leaked NSA hack. The same one was used by WannaCry to scan the entire internet. However, the latest operation used another strain to infiltrate a local network of computers only.
The attack was toxic enough to take down entire businesses temporarily. The Ukrainian Presidential Administration doesn’t have an exact estimation of the caused damaged. At the same time, agents are currently learning what hackers’ next step would be with their stolen data.
Ukrainian police made public a footage that shows masked persons infiltrating by force in the headquarters of Intellect Service. The incident happened on Tuesday. The assaulted software developer had its M.E.Doc accounting software turned into a back door for hackers.
Any Computer With the Fingerprint on It Might Be the Target of a Second Attack
Around 80% of enterprises in Ukraine alone are using M.E.Doc. Therefore, about 1 million computers became vulnerable in an instant. Interior Minister Arsen Avakov claimed that police managed to avoid a second attack that used the same back door to enter systems.
Chief Executive Olesya Bilousova stated that this vulnerable point is still open. Therefore, a second attack is plausible in these moments. Any computer that makes part of an infected network might become a target.
Those systems that missed the last week’s cyber threat might still harbor NotPetya virus. This threat can be activated at any moment and take hold of important documents. Bilousova claimed that there were signs of this virus on computers that had nothing to do with the M.E.Doc product.
Image source: 1