1. Home
  2. Major cyberattack sweeps globe, India affected, Jawaharlal Nehru Port in Mumbai hit

Major cyberattack sweeps globe, India affected, Jawaharlal Nehru Port in Mumbai hit

Agencies
June 28, 2017

New Delhi, Jun 28: A major global cyber attack on Tuesday disrupted computers at Russia's biggest oil company, Ukrainian banks and multinational firms with a virus similar to the ransomware that last month infected more than 300,000 computers.

cyberattack

India was also among the countries affected by the ransomware with the country's largest port Jawaharlal Nehru Port Trust in Mumbai shutting down operations at one of its three terminals.

News agency reported that operations at one of the three terminals of the country's largest container port were impacted as a fallout of the global ransomware attack, which crippled some central banks and many large corporations in Europe.

The rapidly spreading cyber extortion campaign underscored growing concerns that businesses have failed to secure their networks from increasingly aggressive hackers, who have shown they are capable of shutting down critical infrastructure and crippling corporate and government networks.

It included code known as "Eternal Blue," which cyber security experts widely believe was stolen from the US National Security Agency (NSA) and was also used in last month's ransomware attack, named "WannaCry."

"Cyber attacks can simply destroy us," said Kevin Johnson, chief executive of cyber security firm Secure Ideas. "Companies are just not doing what they are supposed to do to fix the problem."

The ransomware virus crippled computers running Microsoft Corp's Windows by encrypting hard drives and overwriting files, then demanded USD300 in bitcoin payments to restore access. More than 30 victims paid into the bitcoin account associated with the attack, according to a public ledger of transactions listed on blockchain.info.

Microsoft said the virus could spread through a flaw that was patched in a security update in March.

"We are continuing to investigate and will take appropriate action to protect customers," a spokesman for the company said, adding that Microsoft antivirus software detects and removes it.

RUSSIA AND UKRAINE MOST AFFECTED

Russia and Ukraine were most affected by the thousands of attacks, according to security software maker Kaspersky Lab, with other victims spread across countries including Britain, France, Germany, Italy, Poland and the United States. The total number of attacks was unknown.

Security experts said they expected the impact to be smaller than WannaCry since many computers had been patched with Windows updates in the wake of WannaCry last month to protect them against attacks using Eternal Blue code.

Still, the attack could be more dangerous than traditional strains of ransomware because it makes computers unresponsive and unable to reboot, Juniper Networks said in a blog post analyzing the attack.

Researchers said the attack may have borrowed malware code used in earlier ransomware campaigns known as "Petya" and "GoldenEye".

Following last month's attack, governments, security firms and industrial groups aggressively advised businesses and consumers to make sure all their computers were updated with Microsoft patches to defend against the threat.

The US Department of Homeland Security said it was monitoring the attacks and coordinating with other countries. It advised victims not to pay the extortion, saying that doing so does not guarantee access will be restored.

In a statement, the White House National Security Council said there was currently no risk to public safety. The United States was investigating the attack and determined to hold those responsible accountable, it said.

The NSA did not respond to a request for comment. The spy agency has not publicly said whether it built Eternal Blue and other hacking tools leaked online by an entity known as Shadow Brokers.

Several private security experts have said they believe Shadow Brokers is tied to the Russian government, and that the North Korean government was behind WannaCry. Both countries' governments deny charges they are involved in hacking.

'DON'T WASTE YOUR TIME'

The first attacks were reported from Russia and Ukraine.

Russia's Rosneft, one of the world's biggest crude producers by volume, said its systems had suffered "serious consequences," but added oil production had not been affected because it switched over to backup systems.

Ukrainian Deputy Prime Minister Pavlo Rozenko said the government's computer network went down and the central bank reported disruption to operations at banks and firms including the state power distributor.

Danish shipping giant AP Moller-Maersk said it was among the victims, reporting outages at facilities including its Los Angeles terminal.

WPP, the world's largest advertising agency, said it was also infected. A WPP employee who asked not to be named said that workers were told to shut down their computers: "The building has come to a standstill."

A Ukrainian media company said its computers were blocked and it was asked to pay USD300 in the crypto-currency bitcoin to regain access.

"Perhaps you are busy looking for a way to recover your files, but don't waste your time. Nobody can recover your files without our decryption service," the message said, according to a screenshot posted on Ukraine's Channel 24.

Russia's central bank said there were isolated cases of lenders' IT systems being infected. One consumer lender, Home Credit, had to suspend client operations.

Other companies that identified themselves as victims included French construction materials firm Saint Gobain , US drugmaker Merck & Co and Mars Inc's Royal Canin pet food business.

JNPT AFFECTED

India-based employees at Beiersdorf, makers of Nivea skin care products, and Reckitt Benckiser, which owns Enfamil and Lysol, told Reuters the ransomware attack had impacted some of their systems in the country.

AP Moller-Maersk, one of the affected entities globally, operates the Gateway Terminals India (GTI) at JNPT, which has a capacity to handle 1.8 million standard container units.

"We have been informed that the operations at GTI have come to a standstill because their systems are down (due to the malware attack). They are trying to work manually," a senior JNPT official said tonight.

The official explained that JNPT is trying to help the company, but there is little that others can do as the problem s with the systems.

Fearing some clogging up of cargo, additional parking space is being made available, the official said, promising to help in any way that is possible.

Western Pennsylvania's Heritage Valley Health System's entire network was shut down by a cyber attack on Tuesday, according to local media reports.

WANNACRY

Last's month's fast-spreading WannaCry ransomware attack was crippled after a 22-year-old British security researcher Marcus Hutchins created a so-called "kill switch" that experts hailed as the decisive step in slowing the attack.

Security experts said they did not believe that the ransomware released on Tuesday had a kill switch, meaning that it might be harder to stop.

Ukraine's cyber police said on Twitter that a vulnerability in software used by MEDoc, a Ukrainian accounting firm, may have been an initial source of the virus, which researchers including cyber intelligence firm Flashpoint said could have infected victims via an illegitimate software update.

In a Facebook post, MEDoc confirmed it had been hacked but denied responsibility for originating the attack.

An adviser to Ukraine's interior minister said earlier in the day that the virus got into computer systems via "phishing" emails written in Russian and Ukrainian designed to lure employees into opening them.

According to the state security agency, the emails contained infected Word documents or PDF files as attachments.

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.
Agencies
July 28,2020

Ghaziabad, Jul 28: Days ahead of Eid-ul-Adha, Nand Kishore Gurjar, a BJP MLA from Loni assembly constituency in Ghaziabad, has stoked controversy as he asked people celebrating the festival to "sacrifice their children instead of animals" on the occasion. He also claimed that "meat spreads coronavirus" so people should not be allowed to sacrifice innocent animals.

"People who want to sacrifice on Eid should sacrifice their children. I will not let people consume meat and alcohol in Loni. We will not let people sacrifice innocent animals because meat spreads coronavirus," the BJP legislator said while speaking to reporters.

"The way people have followed the guidelines of the government by not offering prayers and namaz at temples and mosques to contain COVID-19, in the same way, they must not give the sacrifice of animals on this Eid," he added.

"Earlier, sacrifices of animals used to be done in Sanatan Dharam as well. However, now coconut is offered instead. I request the Muslim brothers not to give 'qurbani' of animals. We will stop those who will perform the ritual animal sacrifice. We will not let this happen in Loni," he said.

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.
News Network
April 5,2020

Alappuzha, Apr 5: Coming to the rescue of a toddler in need of crucial treatment for cancer, the Kerala health department scrambled its resources for transporting a toddler from here to Hyderabad on Sunday.

In a co-ordinated action, the department arranged for an ambulance and necessary travel permits for the nearly 16-hour 1,100 km inter-state journey that started at 7.15 am from Cherthala in this district with the entire cost to be borne by the state government.

Health Minister K K Shailaja on Saturday said all steps have been taken to facilitate the travel of the toddler and her family members to Hyderabad after local media reports highlighted the plight of the child.

The state Chief Secretary had discussed the matter with his counterparts of other states en route to ensure a smooth journey,the Health Ministry said.

"The travel permit and directions to other states through which the ambulance has to pass were issued from the police headquarters. All district police chiefs were given instructions from the headquarters to arrange for passage of the ambulance," it said in a release.

The journey started at 7.15 am and they are expected to reach Hyderabad at 11 pm.

"The state government will bear the expenses incurred for the journey. The ambulance will remain in Hyderabad and will return with the family," it said.

The first phase of treatment was done at the L V Prasad Hospital in Hyderabad and the family was supposed to travel again within 21 days for the next phase of treatment.

As the family could not undertake the journey in view of the nation-wide lockdown to check coronavirus scare, the state government swung into action to help the child.

The number of confirmed novel coronavirus cases in the country climbed to 3,374 on Sunday while the death toll rose to 77, according to Union Health Ministry data.

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.
News Network
April 21,2020

New Delhi, Apr 21: Tablighi Jamaat leader Maulana Saad Kandhalvi, who has been booked by the Delhi Police for holding a religious congregation here during the lockdown, on Monday urged the followers of the organisation to pray at home in the month of Ramzan.

"I request all, both in India and abroad, to strictly follow the guidelines and instructions of the local or national governments and till the time restrictions are in place and please observe prayers at home. And even in this, we should not invite people from outside," he said in a statement.

Ramzan begins later this week.

While addressing an online briefing on Sunday, Chief Minister Arvind Kejriwal cited the Tablighi Jamaat congregation last month, a major hotspot, and the large inflow of travellers from other countries to Delhi as the reasons for the spread of the virus, and said the city was "fighting a difficult battle".

The Delhi Police crime branch, had on March 31, lodged an FIR against seven people, including the cleric, on a complaint by the Station House Officer of Nizamuddin police station for holding the congregation in alleged violation of the orders against large gatherings to contain the spread of coronavirus.

Later, the Indian Penal Code Section 304 (culpable homicide not amounting to murder) was added to the FIR.

The cleric is wanted by the Delhi Police and he responded twice to them. He is currently under home quarantine.

In an audio message released earlier this month, Kandhalvi had said he was exercising self-quarantine after several hundreds who visited the congregation at Nizamudddin Markaz tested positive for coronavirus.

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.