ESET’s analysis of a recent backdoor used by TeleBots – the group behind the massive NotPetya ransomware outbreak – uncovers strong code similarities to the Industroyer main backdoor, revealing a rumored connection that was not previously proven. Among the most significant malware-induced cybersecurity incidents in recent years were the attacks against the Ukrainian power grid – which … More New TeleBots backdoor: First evidence linking Industroyer to NotPetya
Three years after Microsoft said it was ending support for Windows XP, it announced on May 12th 2017 that it was issuing a security update for the operating system, as well as Windows 8.0 and Windows Server 2003, both of which are in custom support only. That’s two months after the same patch was released for supported versions of Windows. The … More Patching: Your questions answered
ESET Stops WannaCryptor, WannaCry and EternalBlue! Use our free tool to make sure Windows vulnerabilities are patched. What is Petya ransomware? On June 27, 2017, a ransomware attack known as Petya(detected by ESET as Win32/Diskcoder.C Trojan) began spreading rapidly around the globe. The Petya malware attacks a computer’s MBR (master boot record), a key part of the … More ESET protects against Petya and WannaCry ransomware!
The latest global cyberattack, detected by ESET as Win32 / Diskcoder.C, once again highlights the reality that outdated systems and insufficient security solutions are still widespread. The damage caused by this attack has raised a number of questions, which we’ll answer for you here. What are the characteristics of this threat? Encryption: The ransomware only encrypts files with a … More Everything you need to know about the latest variant of Petya
On the 27th of June 2017, a new cyberattack hit many computer systems in Ukraine, as well as in other countries. That attack was spearheaded by the malware ESET products detect as Diskcoder.C(aka ExPetr, PetrWrap, Petya, or NotPetya). This malware masquerades as typical ransomware: it encrypts the data on the computer and demands $300 bitcoins for recovery. In fact, … More Analysis of TeleBots’ cunning backdoor
The latest Petya-like outbreak has gathered a lot of attention from the media. However, it should be noted that this was not an isolated incident: this is the latest in a series of similar attacks in Ukraine. This blogpost reveals many details about the Diskcoder.C (aka ExPetr, PetrWrap, Petya, or NotPetya) outbreak and related information about previously … More TeleBots are back: Supply-chain attacks against Ukraine