Views: 8,824,001 Home | Forums | Uploader | Wiki | Object databases | IRC
Rules/FAQ | Memberlist | Calendar | Stats | Online users | Last posts | Search
10-21-18 04:14 AM
Guest:

0 users reading New Petya ransomware | 1 bot

Main - Computers and technology - New Petya ransomware New reply


XenonNSMB
Posted on 06-27-17 06:40 PM Link | #84068
https://arstechnica.com/security/2017/06/a-new-ransomware-outbreak-similar-to-wcry-is-shutting-down-computers-worldwide/

Install your Windows updates, kiddos.

(and keep backups)





• Nadia: makes her BQFX file an AJ7
• SuperHackio: questions what that is
<~StapleButter> the AJ7 is an automatic rifle model based on the well-known AK47

Dilene
Posted on 06-27-17 06:44 PM Link | #84069
"New"

Petya has been around for some time already. This is mostly an update to it to use the same exploit as WannaCry.

Still, keep off-site backups (and backups of those backups!) and the usual in case of an attack.

____________________
≤!-- Am I doing this right? --≥

Super Hackio
Posted on 06-27-17 07:46 PM Link | #84072



We... are... DONE FOR!!! ABANDON SHIP!!

____________________
SMG RUN Progress: 11%
————————————————
I have a discord if you want:

Ndymario
Posted on 06-27-17 08:05 PM Link | #84075
[thumbnail]
Can't get ransomed if you use a Mac

____________________
Here's my MvL Hacking thread
Also, if you hack MvL, consider joining my Discord Server!

Hope to see you there!

#HakingNoMore

If you can read this, you have scrolled too far down

Yami
Posted on 06-28-17 03:29 PM Link | #84080

StapleButter
Posted on 06-28-17 03:34 PM Link | #84081
re: updates


Microsoft pushed a patch for the NSA hacks, you can download it from their site and install it standalone

as far as I can see there is no "get Windows 10" bullshit embedded. I should check whether there are anal probes.

____________________
NSMBHD - Kafuka - Jul

communism

RicBent
Posted on 06-28-17 04:08 PM Link | #84082

Instead of going through all that bullshit, what about installing Linux? :P

____________________
GitHub - YouTube - NSMBHD

StapleButter
Posted on 06-28-17 04:10 PM Link | #84083
Linux isn't safe either though, but yeah, I should definitely stop being lazy

____________________
NSMBHD - Kafuka - Jul

communism

Swingball
(post deleted) #84084

RicBent
Posted on 06-28-17 05:05 PM Link | #84086

Posted by StapleButter
Linux isn't safe either though, but yeah, I should definitely stop being lazy


It might not be safer, but it's not worth for anybody to code a Linux ransomware. The profit they 'd get is just not there.

____________________
GitHub - YouTube - NSMBHD

Splitwirez
Posted on 06-28-17 07:02 PM Link | #84088
So, wait...is this patch separate from the WannaCry one? I would've thought so, but this:
Posted by Dilene
Petya has been around for some time already. This is mostly an update to it to use the same exploit as WannaCry.

seemingly indicates otherwise...??

StapleButter
Posted on 06-28-17 07:16 PM Link | #84089
Posted by RicBent
It might not be safer, but it's not worth for anybody to code a Linux ransomware. The profit they 'd get is just not there.

oh, you never know


there are lots of servers that run Linux, and that contain all sorts of important shit that you wouldn't want encrypted

____________________
NSMBHD - Kafuka - Jul

communism

poudink
Posted on 06-28-17 07:35 PM (rev. 2 of 06-28-17 07:35 PM) Link | #84090
One of the articles actually mentions a Linux ransomware called "KillDisk".

____________________
Nothing to say, so jadnjkfmnjamnfjkldnajfnjkanfjdksan jsdnvj m.

[insert quote here]

GalacticPirate
Posted on 06-29-17 03:41 AM Link | #84091
@Yami yeah, but macOS viruses are very rare, and macOS security is very, very high. Plus, you get this from a fishy torrent site so :P

Dilene
Posted on 06-29-17 05:46 AM Link | #84092
Posted by Splitwirez
So, wait...is this patch separate from the WannaCry one? I would've thought so, but this:
seemingly indicates otherwise...??

I wasn't properly informed at the time so I went with that assumption that it was just an upgrade of the original Petya (or NotPetya as how it's called now).

By now, I did read a bit more on the ransomware, and this is what I found:

  • The worm won't encrypt at all if you create the file C:\WINDOWS\perfc.dat as read-only. It will still try to propagate itself, though.
  • It doesn't travel outside it's own /24 network, making me think it was a targeted attack.
  • Its email was shutdown so the infected users won't be able to recover their files... Oops?
  • It encrypts offline in a modified chkdisk terminal. The process starts as soon you see the message, so you can turn off the PC ASAP, plug the drive into another PC and copy your files away (and possibly format the infected drive).

This article could help as some reading material.


And FWIW: You can run almost if not every windows ransomware on Linux, with the help of a little thing called Wine.

____________________
≤!-- Am I doing this right? --≥

Yami
Posted on 06-29-17 04:00 PM Link | #84097
Posted by RicBent
Instead of going through all that bullshit, what about installing Linux? :P



Main - Computers and technology - New Petya ransomware New reply

Page rendered in 0.023 seconds. (2048KB of memory used)
MySQL - queries: 27, rows: 223/223, time: 0.014 seconds.
[powered by Acmlm] Acmlmboard 2.064 (2018-07-20)
© 2005-2008 Acmlm, Xkeeper, blackhole89 et al.