Bitdefender has identified a massive ransomware attack triggered by a version of the GoldenEye or Petya ransomware that is currently claiming victims across the world. Unlike other families of ransomware, GoldenEye does not encrypt individual files, but rather the entire hard disk drive. It then reboots it to prevent the user from accessing that information. When the encryption process is complete, GoldenEye forcefully crashes the computer and asks for $300 as ransom.
Initial investigation reveals that it spreads automatically from one computer to another using multiple vulnerabilities in the operating system, including the EternalBlue exploit that grabbed the headlines during the #WannaCry attack.
We’re glad to let you know that if you are using our managed cyber security solution then you are safe since Bitdefender blocks the currently known samples of the new GoldenEye variant.
If not, then we strongly recommend you review your current anti-malware solution and make sure you are protected, or contact us for more details on our managed cyber security solutions.