Petya/NotPetya malware had already created lots of havoc across the US, Europe, and India. Recently, Ukrainian Police had seized the computer server of M.E.Doc which is an accounting firm which gives software to almost 80% of companies in Ukraine.
Police Seize Servers Of Software Firm Linked To Petya Malware Attack
Just when we thought that the world is now safe from ransomware and other malware attacks, Petya/NotPetya ransomware started to create havoc across the US, Europe, and India.
Researchers have termed Petya/NotePetya as a wiper, which is something more dangerous than WannaCry or any other ransomware program. Security Researcher, Matt Suiche had thoroughly examined the working process of Petya/NotPetya and concluded by saying that it’s a wiper.
For those who are still unknown about the widespread attacks of Petya/NotPetya malware, let me tell you Petya is deleting the first sector of the disk. The security firm, Kaspersky also examined Petya/NotPetya and they also ended up saying that this is a wiper.
Recently, Ukrainian Police had seized the computer server of M.E.Doc which is an accounting firm which gives software to almost 80% of companies in Ukraine. Police had seized the computer servers as a part of the investigation to discover the truth behind the Petya/NotPetya attacks.
According to the reports from Reuters, Ukrainian Police believes that M.E.Doc accounting firm had played a significant role in spreading the malware. Ukrainian cyber experts believe that the masterminds behind the ongoing attack had made an unauthorized interference with M.E.Doc’s computers.
Attackers have installed a malicious code in M.E.Doc software through a backdoor. It’s being said that the agent of the software have been informed about all the flaws in the past, but they choose to ignore it.
On investigation, cyber police had found that the backdoor in M.E.Doc software allows hackers to obtain information about the users and can transfer them to a remote server, upload files and much more.
Ukrainian Cyber Police had recommended all users to stop using the M.E.Doc software because the infection on the users’ system was masked as the M.E.Doc software update. Cyber police also recommended users to change their passwords and digital signatures.
So, what do you think about this? Share your views in the comment box below.
