It looks like you're using an Ad Blocker.
Please white-list or disable AboveTopSecret.com in your ad-blocking tool.
Thank you.
Some features of ATS will be disabled while you continue to use an ad-blocker.
originally posted by: flatbush71
As research is still continuing the variant has been identified as modified version of Petya called Petrawarp.
And yes it is moving west. U.S. drug company Merck has been hit as well.
There is absolutely no need for all of this, we built the Foxtrot Frankenstein.
A global cyber-attack that affected companies around the world may have started via corrupted updates on a piece of accountancy software.
Fingers are increasingly pointing to a piece of Ukrainian tax-filing software, Medoc, as the source of the infection, although the company denies it.
Malware generally infiltrates networks via email attachments that users click on in error.
...
In email correspondence with the BBC, Mr Hutchins said: "It looks like the software's automatic update system was compromised and used to download and run malware rather than updates for the software."
It was not yet clear how it had been compromised, he added
On topic:
Yeah, it looks like the NSA tools allowed this to happen.
Not so sure. Actually, many software engineers introduce "backdoors" in their code for testing purposes, with the full intent to remove them in the production version. But sometimes such backdoors remain in the code. Intelligence agencies are aware of this and try to find such backdoors. Most backdoors give you access to the core of the system, and often with elevated rights. This enables you to do with the system whatever you want. So, you can actually do stuff like monitoring the screen, gather keypresses (including your passwords), sniff disks and networks, take screenshots etc. - and all without the subject even realising this. Secret services SHOULD of course report this to - say - Microsoft, but well, then MS would patch the systems and in effect kill their intelligence..