CW Pakistan
  • Legacy
    • Legacy Editorial
    • Editor’s Note
  • Academy
  • Wired
  • Cellcos
  • PayTech
  • Business
  • Ignite
  • Digital Pakistan
  • DFDI
  • PSEB
  • PASHA
  • TechAdvisor
  • GamePro
  • Partnerships
  • PCWorld
  • Macworld
  • Infoworld
  • TechHive
  • TechAdvisor
0
0
0
0
0
Subscribe
CW Pakistan
CW Pakistan CW Pakistan
  • Legacy
    • Legacy Editorial
    • Editor’s Note
  • Academy
  • Wired
  • Cellcos
  • PayTech
  • Business
  • Ignite
  • Digital Pakistan
  • DFDI
  • PSEB
  • PASHA
  • TechAdvisor
  • GamePro
  • Partnerships
  • Business

What We Know and Don’t Know About the International Cyberattack

  • May 13, 2017
Total
0
Shares
0
0
0
Share
Tweet
Share
Share
Share
Share

By RUSSELL GOLDMAN

MAY 12, 2017

Right Now: Unknown hackers launched simultaneous attacks against computer systems around the world, holding vital information for ransom and throwing government agencies, businesses and hospitals into chaos.

■ More than 45,000 attacks have been recorded in as many as 74 countries, including Russia, Turkey, Vietnam, the Philippines and Japan, according to Kaspersky Labs, a Russian cybersecurity firm.

■ Among the companies and government agencies affected were FedEx, Britain’s National Health Service and the Russian Interior Ministry.

What We Know

■ Hackers appeared to have exploited a flaw in Microsoft’s Windows operating system that was first discovered by the United States National Security Agency. The flaw and a tool to exploit it with malicious software were made public in April by a hacker collective known as Shadow Brokers.

■ At least 16 British hospitals and other facilities seemed to be hit hardest by the attacks, which blocked doctors from gaining access to patient files and caused emergency rooms to divert patients. Prime Minister Theresa May said there was no evidence that patient data had been compromised.

■ Workers at those hospitals, a Spanish telecommunications firm and elsewhere were confronted with a message on their monitors that read, “Ooops, your files have been encrypted!” and demanded $300 in Bitcoin, an anonymous digital currency preferred by criminals, to restore access.

■ The Russian Interior Ministry confirmed in a statement that 1,000 of its computers had also been hit.

■ A FedEx spokesman said of the attack: “Like many other companies, FedEx is experiencing interference with some of our Windows-based systems caused by malware. We are implementing remediation steps as quickly as possible. We regret any inconvenience to our customers.”

Get the Morning Briefing by Email

Cybersecurity experts identified the malicious software as a variant of ransomware known as WannaCry.

■ Reports last year found that some state-run hospitals in Britain had spent nothing on cyberdefense and were running outdated software on their systems.

What Is Ransomware?

■ In a typical attack, hackers send their victims an email that includes a link to what appears to be for an innocuous web address or email attachment. In this case, attackers appear to have sent their victims encrypted .zip file attachments intended to make it more difficult to detect their nefarious purpose.

■ Victims who click on that attachment soon find their computers infected. The program encrypts files, folders, and drives on the computer — and potentially the entire networks to which they are connected. “Users and organizations are generally not aware they have been infected until they can no longer access their data or until they begin to see computer messages advising them of the attack and demands for a ransom payment in exchange for a decryption key,” according to the F.B.I.

■ The messages that victims receive include directions for paying the attackers a ransom. Payment is typically demanded, as it was in the most recent string of attacks, in bitcoin.

■ Microsoft in March recognized a potential flaw in its servers that allowed ransomware and other malicious software to spread on networks.

■ A hospital in Los Angeles was similarly attacked in February of last year, paying a bitcoin ransom equivalent to about $17,000 to hackers who used malware to hold its computer system hostage.

What We Don’t Know

■ Who is behind the attack? While the Shadow Broker hackers released one of the tools used in the attack, it is not clear who orchestrated Friday’s attacks. It is also not clear who the Shadow Broker hackers are. Initially, an insider at the N.S.A. or the C.I.A. was suspected of having leaked the agency’s hacking tools, but the hackings continued after an N.S.A. contractor was arrested. Security experts have said that the timing of the hackers’ data dumps often align with Russian political interests. For instance, one of the latest Shadow Broker dumps occurred after the United States bombed Syria. Hackers cited the bombing as part of the impetus for their latest leak.

■ Has anyone paid the ransom? Security experts said those who had already fallen victim to ransomware on Friday may have little recourse. Jason Rebholz, a senior director at Crypsis Group, which specializes in ransomware, said victims could try to search the web for a decryption service, but chances are that in a sophisticated attack like this one, cybercriminals had already taken steps to immunize their encryption from such services.

This article was originally published on NYTimes and give the link

Share
Tweet
Share
Share
Share
Related Topics
  • C.I.A.
  • Crypsis Group
  • Jason Rebholz
  • Kaspersky Labs
  • N.S.A.
  • NYTimes
Previous Article
  • Computerworld

Automation Arrives at Restaurants: Khawo! is Digitizing Dining

  • May 12, 2017
Read More
Next Article
  • Computerworld

Lahore To Implement E-Ticketing For Traffic Violators

  • May 13, 2017
Read More
You May Also Like
Read More
  • Business

Jazz Honored with HR Pinnacle Award for Innovative Learning and Development Programs

  • Press Desk
  • July 2, 2025
Read More
  • Business

Data Vault Launches Pakistan’s First AI-Powered Data Center

  • Press Desk
  • June 26, 2025
Read More
  • Business

FPCCI and SECP Host Seminar to Boost Corporatization and Ease of Doing Business

  • Press Desk
  • June 25, 2025
Read More
  • Business

PAA Appeals Against Withholding Tax Increase on Advertising Services at FPCCI Meeting

  • Press Desk
  • June 24, 2025
Read More
  • Business

Skywell Group to Build EV Assembly Plant in Punjab SEZ Under New Pakistan-China MoU

  • Press Desk
  • June 19, 2025
Read More
  • Business

S&P Global Completes 20 Years in Pakistan, Reaffirms Commitment to Innovation and Empowerment

  • Press Desk
  • June 19, 2025
Read More
  • Business

Aga Khan University Panel to Explore Supply Chain 5.0 and Sustainability on June 20

  • Press Desk
  • June 19, 2025
Read More
  • Business

Careem Halts Ride-Hailing in Pakistan Amid Competition and Economic Pressures

  • Press Desk
  • June 18, 2025

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Trending Posts
  • Overseas Pakistanis Get 120-Day Tax-Free Mobile Registration via PTA System
    • July 2, 2025
  • FBR Requires Hotels, Couriers, and Other Service Providers to Go Digital for Tax Reporting
    • July 2, 2025
  • AliExpress Sellers Halt Cheap Shipping to Pakistan Amid Customs Restrictions
    • July 2, 2025
  • PPRA Launches Pilot Phase of E-Disposal System for Digital Asset Disposal
    • July 2, 2025
  • Lahore High Court Orders Use of Smartphones to Record Drug Arrests by Police
    • July 2, 2025
about
CWPK Legacy
Launched in 1967 internationally, ComputerWorld is the oldest tech magazine/media property in the world. In Pakistan, ComputerWorld was launched in 1995. Initially providing news to IT executives only, once CIO Pakistan, its sister brand from the same family, was launched and took over the enterprise reporting domain in Pakistan, CWPK has emerged as a holistic technology media platform reporting everything tech in the country. It remains the oldest continuous IT publishing brand in the country and in 2025 is set to turn 30 years old, which will be its biggest benchmark and a legacy it hopes to continue for years to come. CWPK is part of the SPIN/IDG Wakhan media umbrella.
Read more
Explore Computerworld Sites Globally
  • computerworld.es
  • computerworld.com.pt
  • computerworld.com
  • cw.no
  • computerworldmexico.com.mx
  • computerwoche.de
  • computersweden.idg.se
  • computerworld.hu
Content from other IDG brands
  • PCWorld
  • Macworld
  • Infoworld
  • TechHive
  • TechAdvisor
CW Pakistan CW Pakistan
  • CWPK
  • CXO
  • DEMO
  • WALLET

CW Media & all its sub-brands are copyrighted to SPIN-IDG Wakhan Media Inc., the publishing arm of NCC-RP Group. This site is designed by Crunch Collective. ©️1995-2025. Read Privacy Policy.

Input your search keywords and press Enter.