Security Alert – Another Massive New Ransomware Outbreak 28-06-2017

A major cyber attack swept through countries across the world , affecting Indian operation of global companies operation at one of terminals of Jawaharlal Nehru Port trust in Mumbai had to be shut down following the Ransomware attack ( Petya ransomware)

It has been reported that variants of Petya ransomware is spreading quickly by leveraging the EternalBlue Exploit targeting Windows SMB
file sharing protocol.

 

In order to prevent infection, users and organizations are advised to apply patches to Windows systems and abide with following advisories

  • Perform regular backups of all critical information to limit the impact of data or system loss and to help expedite the recovery process. Ideally,this data should be kept on a separate device, and backups should be stored offline.
  • Block SMB ports on Enterprise Edge/perimeter network devices [UDP 137, 138 and TCP 139, 445] or Disable SMBv1. Block all Access to USB ports.
  • Don’t open attachments in unsolicited e-mails, even if they come from people in your contact list, and never click on a URL contained in an unsolicited e-mail, even if the link seems benign. In cases of genuine URLs close out the e-mail and go to the organization’s website directly through browser.
  • Establish a Sender Policy Framework (SPF),Domain Message Authentication Reporting and Conformance (DMARC), and DomainKeys Identified.
  • Mail (DKIM) for your domain, which is an email validation system designed to prevent spam by detecting email spoofing by which most of the ransomware samples successfully reaches the corporate email boxes.
  • Application whitelisting/Strict implementation of Software Restriction Policies (SRP) to block binaries running from %APPDATA%, %PROGRAMDATA% and %TEMP% paths. Ransomware sample drops and executes generally from these locations. Enforce applicationwhitelisting on all endpoint workstations.
  • Deploy web and email filters on the network. Configure these devices to scan for known bad domains, sources, and addresses; block these before receiving and downloading messages. Scan all emails, attachments, and downloads both on the host and at the mail gateway with a reputable antivirus solution.
  • Disable macros in Microsoft Office products. Some Office products allow for the disabling of macros that originate from outside of an organization and can provide a hybrid approach when the organization depends on the legitimate use of macros. For Windows, specific settings can block macros originating from the Internet from running.
  • Configure access controls including file, directory, and network share permissions with least privilege in mind. If a user only needs to read specific files, they should not have write access to those files, directories, or shares.
  • Maintain updated Antivirus software on all systems.
  • Consider installing Enhanced Mitigation Experience Toolkit, or similar host-level anti-exploitation tools.
  • Block the attachments of file types, exe|pif|tmp|url|vb|vbe|scr|reg|cer|pst|cmd|com|bat|dll|dat|hlp|hta|js|wsf
  • Regularly check the contents of backup files of databases for any unauthorized encrypted contents of data records or external elements, (backdoors /malicious scripts.)
  • Keep the operating system third party applications (MS office, browsers, browser Plugins) up-to-date with the latest patches.
  • Follow safe practices when browsing the web. Ensure the web browsers are secured enough with appropriate content controls.
  • Network segmentation and segregation into security zones-help protect sensitive information and critical services. Separate administrative network from business processes with physical controls and Virtual Local Area Networks.
  • Disable remote Desktop Connections, employ least-privileged accounts.
  • Ensure integrity of the codes /scripts being used in database, authentication and sensitive systems, Check regularly for the integrity of the information stored in the databases.
  • Restrict user’s abilities (permissions) to install and run unwanted software applications.
  • Employ data-at-rest and data-in-transit encryption.
  • Individuals or organizations are not encouraged to pay the ransom, as this does not guarantee files will be released. Report such instances of fraud to Law Enforcement agencies.

92 comments

  1. Doctor Who is now considered a British Institute and has come a long way since it first aired on November 23rd 1963. The very first show saw the Doctor travel 100,00 years into the past to help some dim cavemen discover light. After 26 seasons and seven Doctors later the series came off our screens in 1989 much to the disappointment of the huge devoted fanbase. In 1996 an attempt was made to revive Doctor Who but it wasnt until June 2005 when it came back with a vengeance with Christopher Eccleston as the ninth Doctor that put the series back on the map as it were. It then went on for 5 years with David Tenant portraying the Doctor until 2010 when Matt Smith took over the role. Today it is still a great family show and has attracted many new fans.

    If youre a new or old fan of the show there are Tours and museums you can go and see some of the locations and memorabilia of this classic show. The Doctor Who Tour of London will take you on over 15 locations from the show, some from the new series and some from old sites like the location of The Invasion and Resurrection of the Darleks. The tour also takes you to the TV museum in London where you will get to see some of the cosumes worn in the show and props used. Also you can buy gifts and memorabilia from the shop.

    You will learn all about how the shows were made so the tour is also educational. If you want to take pictures of the locations thats not a problem. Remember the front door of 10 Downing Street in Aliens of London? Well you can get up and close to this and get your picture taken in front of the door. Rose Tyler fans will love the tour as you get to drop by her home in the show.

    Why not go that extra mile and actually meet a Doctor Who star. Well this is possible with private or group tours. You will get the general tour but included will be a pre-arranged meeting or lunch with a celebrity from the show. This will obviously depend on availability of the celebrity and the cost will reflect the popularity of that celebrity.

    There are tours in London and also Wales. The Wales tours take you to Cardiff where you will see lots of location which were featured in shows since 2005. You can leave from London or at Leigh Delamere services station on the M4. There is a Doctor Who exhibition in Cardiff which you get to see. At the end of the Doctor Who tour you get a souvenir group picture sent you by email which is a nice touch.

    For seriously devoted Doctor Who fans there is a 3 day tour which takes you to all the locations in both London and Cardiff. You will see locations from the past 45 years as well as recent sites from the lasted Doctor Who series. Day one is based in London where you get to see 15 sites. Day two takes you to Cardiff where you get to mean the real life owner of the to see we have an Gothic property used as the location of the school in Human Nature. The final day is partly spent in Cardiff with a walking tour at Cardiff Bay, then you head back to London but a stop at Stonehenge to see the site of the Pandoica. Then its dinner at The Cloven Hoof pub in Devils End b efore you taken back to central London.

     

  2. Writing a medical thesis or dissertation is a task done by almost all postgraduate and master’s medical students. Dissertation is derived from the Latin word disserto which means discuss. It is essential to write successful medical papers such as medicine essays and medical thesis papers. There are several reasons as to why students write medicine essays. One of the reasons is to promote enhancement of critical judgment, research skills as well as analytical skills. Moreover, medicine essay writing produce students with the ability to 4evaluate and analyze data critically.

    The initial step for writing medicine essays is to choose a topic. A writer should have at least three topics to choose from. The topic has to be interesting, feasible and relevant. It is essential to write quality medicine essay. Hence, students need to have analytical skills and perfect writing skills. The writing skills will enable them write outstanding essay papers that can be highly regarded by instructors and professors. Teachers often require a lot and expect a lot from their students in terms of medicine essay writing. for this reason, students find essay writing to be an extremely difficult task and hence resort to buying custom medicine essays.

    A custom medicine essay has to be written by professional writers who are qualified in the field of nursing. Moreover, the custom medicine essay has to be original and plagiarism free. This means that it has to be written from scratch by experts with many years experience. The many years experience should enable a writer to write any form of medical paper including medical thesis, medicine essay and even medicine research paper. Moreover, experience will enable a writer to write a medicine essay that can guarantee academic success.

    Students get custom medicine essays from custom writing company. It is essential to choose the best company so that one can get the best custom medicine essay. The best and the most reliable medicine essay writing company should have some unique characteristics such as affordability and the ability to provide original and superior quality medicine essays. The other quality is that the company has to hire expert writers who can write quality medicine essays and other types of medical papers. The essays should not only be quality but also plagiarism free and free of grammatical and spelling mistakes.

    A custom medicine essay has a similar structure to any other academic essay assignment. It has an introduction that introduces the topic and tells the reader what the essay is all about. The second section is the body that has many paragraphs supporting the main topic. Finally there is the conclusion that briefly summarizes what has been discussed in the body section of the essay. Students should choose reliable writing companies so that they can get quality custom papers on several fields such as technology, sociology and law in addition to medicine field.

    Our custom writing company is the best company that all clients should rely on when in need of any given type of medicine paper. We provide quality papers that not only plagiarism free but also original. Moreover, our custom papers are affordable and able to guarantee academic excellence at all times. All our medical papers are reliable and sure of satisfying clients at all times.

     

  3. A Biological Masterpiece, But Subject to Many Ills
    The human foot is a biological masterpiece. Its strong, flexible, and functional design enables it to do its job well and without complaint—if you take care of it and don’t take it for granted.
    healthThe foot can be compared to a finely tuned race car, or a space shuttle, vehicles whose function dictates their design and structure. And like them, the human foot is complex, containing within its relatively small size 26 bones (the two feet contain a quarter of all the bones in the body), 33 joints, and a network of more than 100 tendons, muscles, and ligaments, to say nothing of blood vessels and nerves.
    https://www.cialissansordonnancefr24.com/generique-cialis-10-mg/

  4. I love what you guys tend to be up too. Such clever work and reporting!
    Keep up the great works guys I’ve added you guys to my personal blogroll.

  5. Hello to all, how is everything, I think every one is getting more from this web page,
    and your views are pleasant for new viewers.

  6. Hi! Do you know if they make any plugins to safeguard against hackers?
    I’m kinda paranoid about losing everything I’ve worked
    hard on. Any recommendations?

  7. Hi there! I just wanted to ask if you ever have any issues with
    hackers? My last blog (wordpress) was hacked and I ended up losing several weeks of hard work due to
    no data backup. Do you have any solutions to protect
    against hackers?

  8. My spouse and I stumbled over here by a different web page and thought I might
    as well check things out. I like what I see so i am just following you.
    Look forward to checking out your web page for a second time.

  9. It is perfect time to make a few plans for the longer term and it is time to be happy.
    I’ve read this post and if I may just I desire
    to counsel you few fascinating issues or suggestions.
    Perhaps you can write next articles referring to this article.
    I desire to read even more things about it!

  10. Sweet blog! I found it while surfing around on Yahoo News.
    Do you have any tips on how to get listed in Yahoo News?
    I’ve been trying for a while but I never seem to get there!
    Appreciate it

  11. I’ve been having issues with my Windows hosting. It has set me back quite a bit while making the next list. This is the current list that I have. I should add another list in less than a week. I’ll let you all know when the next list is ready. Thank you for your patience.

  12. Hi, I do believe this is a great blog. I stumbledupon it 😉 I will come back yet again since i have bookmarked it.
    Money and freedom is the greatest way to change, may you be rich and continue to
    guide others.

  13. Great weblog here! Additionally your site lots up fast!
    What web host are you the usage of? Can I am getting your associate link to your host?

    I wish my website loaded up as fast as yours lol

  14. Please let me know if you’re looking for a article writer for your weblog.
    You have some really great articles and I feel I would be a good asset.
    If you ever want to take some of the load off, I’d absolutely
    love to write some material for your blog in exchange for a link back to mine.
    Please send me an e-mail if interested. Thank you!

  15. I really like your blog.. very nice colors & theme.
    Did you design this website yourself or did you hire someone to do it for you?
    Plz reply as I’m looking to design my own blog and would like to know where u got this from.
    thanks a lot

  16. Hey! I understand this is somewhat off-topic however I needed to
    ask. Does building a well-established website such as yours take a large amount of work?
    I am completely new to blogging however I do write in my diary everyday.
    I’d like to start a blog so I can share my experience and views online.
    Please let me know if you have any kind of recommendations or tips for brand new aspiring bloggers.
    Thankyou!

  17. I’m working on a new list. I’m hopeful that this one will be much bigger.
    I made some announcements about my future site plans.
    I’m going to be adding some new stuff soon.
    You’ll definitely want to stay tuned for that. Thanks for your time and have a
    good weekend!

  18. Hi there, just became aware of your blog through Google, and found that
    it’s really informative. I’m going to watch out for brussels.
    I will be grateful if you continue this in future.

    Lots of people will be benefited from your writing.
    Cheers!

  19. I’m working on a new list. I’m hopeful that this one will be much bigger.
    I made some announcements about my future site plans.
    I’m going to be adding some new stuff soon. You’ll definitely want to stay tuned
    for that. Thanks for your time and have a good weekend!

  20. Simply want to say your article is as amazing.
    The clarity to your put up is just great and i can think you’re a professional in this subject.
    Well with your permission let me to seize your RSS feed to stay up
    to date with approaching post. Thank you one million and please continue the gratifying work.

  21. There’s been a lot of changes since I last left a comment about my site.

    I’m starting to add the new features that I’ve wanted to.
    I hope in the next few weeks that all of it will be up and running.
    It’s going to take time and I haven’t had much of it to dedicate to this project.
    I thank you all for visiting my site and I hope you have a great weekend!

  22. Howdy would you mind letting me know which webhost you’re utilizing?I’ve loaded your blog in 3 different internet browsers and I must say this blog loads a lot faster then most.Can you suggest a good hosting provider at areasonable price? Thanks a lot, I appreciate it!

  23. Write more, thats all I have to say. Literally, it seems as though you relied on the video to make your
    point. You clearly know what youre talking about, why waste your intelligence on just posting videos to your blog when you could be giving us something enlightening to read?

  24. This design is spectacular! You obviously know how to
    keep a reader amused. Between your wit and your videos, I was almost moved to start my own blog (well, almost…HaHa!) Wonderful job.
    I really loved what you had to say, and more than that, how you presented it.
    Too cool!

  25. Excellent blog! Do you have any helpful hints for aspiring writers?

    I’m hoping to start my own website soon but I’m a little lost on everything.
    Would you advise starting with a free platform like
    Wordpress or go for a paid option? There are so many choices out there that I’m completely overwhelmed ..
    Any tips? Appreciate it!

Leave a Reply

Your email address will not be published. Required fields are marked *