Europol: Ransomware attack is of unprecedented level

Al Jazeera

International investigation needed to identify culprits of biggest-of-its-kind cyber-extortion attack, Europol says.

The wave of cyberattacks wreaking havoc across the globe is “at an unprecedented level”, European Union’s law enforcement agency Europol said.

The attacks will “require a complex international investigation to identify the culprits”, the agency, which is working with countries and companies hit by the attacks, said in a statement on Saturday.

Dozens of countries were hit by the ransomware attack on Friday that locked up computers and held users’ files for ransom at a multitude of hospitals, companies and government agencies.

It was believed to the biggest attack of its kind ever recorded.

READ MORE: Global hacking attack infects 57,000 computers

The malicious software behind the onslaught appeared to exploit a vulnerability in Microsoft Windows that was supposedly identified by the US’ National Security Agency (NSA) for its own intelligence-gathering purposes and was later leaked to the internet.

Britain’s National Health Service fell victim, its hospitals forced to close wards and emergency rooms and turn away patients.

Russia appeared to be the hardest hit, according to security experts, with the country’s interior ministry confirming it was struck.

‘Biggest outbreak in history’

All told, several cyber-security firms said they had identified the malicious software responsible for tens of thousands of attacks in 99 countries.

Mikko Hypponen, chief research officer at the Helsinki-based cyber-security company F-Secure, called the attack “the biggest ransomware outbreak in history”.

Security experts said the attack appeared to be caused by a self-replicating piece of software that enters companies and organisations when employees click on email attachments, then spreads quickly internally from computer to computer when employees share documents and other files.

READ MORE: WannaCry – What is ransomware and how to avoid it

Its ransom demands start at $300 and increase after two hours to $400, $500 and then $600, said Kurt Baumgartner, a security researcher at Kaspersky Lab.

Affected users can restore their files from backups, if they have them, or pay the ransom; otherwise they risk losing their data entirely.

WannaCry encrypts your files and demands payment to regain access [Richie Tongo/EPA]

Chris Wysopal of the software security firm Veracode said criminal organisations were probably behind the attack, given how quickly the malware spread.

“For so many organisations in the same day to be hit, this is unprecedented,” he said.

The security holes it exploits were disclosed several weeks ago by TheShadowBrokers, a mysterious group that has published what it says are hacking tools used by the NSA as part of its intelligence-gathering.

Shortly after that disclosure, Microsoft announced that it had already issued software “patches” for those holes. But many companies and individuals haven’t installed the fixes yet or are using older versions of Windows that Microsoft no longer supports and didn’t fix.

“Microsoft stopped supporting Windows XP three years ago, hoping they would move to newer versions of the operating system,” Al Jazeera’s technology editor, Tarek Bazley, said.

“Many did but about 100 million computers – 10 percent of those running on Windows – still use XP, making them susceptible to an attack like this.”

In addition to Russia, the biggest targets appeared to be Ukraine and India, nations where it is common to find older, unpatched versions of Windows in use, according to security firms.

READ MORE: ‘Major disruption’ as UK hospitals hit by cyber attack

Hospitals across Britain found themselves without access to their computers or phone systems. Many cancelled all routine procedures and asked patients not to come to the hospital unless it was an emergency. Doctors’ practices and pharmacies reported similar problems.

“This attack is going to be a wake-up call for many businesses that have dragged their feet when it comes to security and updating their systems,” Bazley said.

“But even if 100,000 computers are affected by this attack, it’s worth remembering that this is just a tiny fraction – less than 0.0001 percent – of the billion or more computers running Windows in the world today.”

British Prime Minister Theresa May said there was no evidence patient data had been compromised and added that the attack had not specifically targeted the National Health Service.

“It’s an international attack and a number of countries and organisations have been affected,” she said.

Ransomware attacks are on the rise around the world. In 2016, Hollywood Presbyterian Medical Center in California said it had paid a $17,000 ransom to regain control of its computers from hackers.

Source: Al Jazeera and news agencies

Advertisements
This entry was posted in Cyberattack, IT - Information Technology - Công nghệ thông tin and tagged , , , by Trần Đình Hoành. Bookmark the permalink.

About Trần Đình Hoành

I am an attorney in the Washington DC area, with a Doctor of Law in the US, attended the master program at the National School of Administration of Việt Nam, and graduated from Sài Gòn University Law School. I aso studied philosophy at the School of Letters in Sài Gòn. I have worked as an anti-trust attorney for Federal Trade Commission and a litigator for a fortune-100 telecom company in Washington DC. I have taught law courses for legal professionals in Việt Nam and still counsel VN government agencies on legal matters. I have founded and managed businesses for me and my family, both law and non-law. I have published many articles on national newspapers and radio stations in Việt Nam. In 1989 I was one of the founding members of US-VN Trade Council, working to re-establish US-VN relationship. Since the early 90's, I have established and managed VNFORUM and VNBIZ forum on VN-related matters; these forums are the subject of a PhD thesis by Dr. Caroline Valverde at UC-Berkeley and her book Transnationalizing Viet Nam. I translate poetry and my translation of "A Request at Đồng Lộc Cemetery" is now engraved on a stone memorial at Đồng Lộc National Shrine in VN. I study and teach the Bible and Buddhism. In 2009 I founded and still manage dotchuoinon.com on positive thinking and two other blogs on Buddhism. In 2015 a group of friends and I founded website CVD - Conversations on Vietnam Development (cvdvn.net). I study the art of leadership with many friends who are religious, business and government leaders from many countries. In October 2011 Phu Nu Publishing House in Hanoi published my book "Positive Thinking to Change Your Life", in Vietnamese (TƯ DUY TÍCH CỰC Thay Đổi Cuộc Sống). In December 2013 Phu Nu Publishing House published my book "10 Core Values for Success". I practice Jiu Jitsu and Tai Chi for health, and play guitar as a hobby, usually accompanying my wife Trần Lê Túy Phượng, aka singer Linh Phượng.

Trả lời

Mời bạn điền thông tin vào ô dưới đây hoặc kích vào một biểu tượng để đăng nhập:

WordPress.com Logo

Bạn đang bình luận bằng tài khoản WordPress.com Đăng xuất / Thay đổi )

Twitter picture

Bạn đang bình luận bằng tài khoản Twitter Đăng xuất / Thay đổi )

Facebook photo

Bạn đang bình luận bằng tài khoản Facebook Đăng xuất / Thay đổi )

Google+ photo

Bạn đang bình luận bằng tài khoản Google+ Đăng xuất / Thay đổi )

Connecting to %s

%d bloggers like this: