1. Home
  2. Major cyberattack sweeps globe, India affected, Jawaharlal Nehru Port in Mumbai hit

Major cyberattack sweeps globe, India affected, Jawaharlal Nehru Port in Mumbai hit

Agencies
June 28, 2017

New Delhi, Jun 28: A major global cyber attack on Tuesday disrupted computers at Russia's biggest oil company, Ukrainian banks and multinational firms with a virus similar to the ransomware that last month infected more than 300,000 computers.

cyberattack

India was also among the countries affected by the ransomware with the country's largest port Jawaharlal Nehru Port Trust in Mumbai shutting down operations at one of its three terminals.

News agency reported that operations at one of the three terminals of the country's largest container port were impacted as a fallout of the global ransomware attack, which crippled some central banks and many large corporations in Europe.

The rapidly spreading cyber extortion campaign underscored growing concerns that businesses have failed to secure their networks from increasingly aggressive hackers, who have shown they are capable of shutting down critical infrastructure and crippling corporate and government networks.

It included code known as "Eternal Blue," which cyber security experts widely believe was stolen from the US National Security Agency (NSA) and was also used in last month's ransomware attack, named "WannaCry."

"Cyber attacks can simply destroy us," said Kevin Johnson, chief executive of cyber security firm Secure Ideas. "Companies are just not doing what they are supposed to do to fix the problem."

The ransomware virus crippled computers running Microsoft Corp's Windows by encrypting hard drives and overwriting files, then demanded USD300 in bitcoin payments to restore access. More than 30 victims paid into the bitcoin account associated with the attack, according to a public ledger of transactions listed on blockchain.info.

Microsoft said the virus could spread through a flaw that was patched in a security update in March.

"We are continuing to investigate and will take appropriate action to protect customers," a spokesman for the company said, adding that Microsoft antivirus software detects and removes it.

RUSSIA AND UKRAINE MOST AFFECTED

Russia and Ukraine were most affected by the thousands of attacks, according to security software maker Kaspersky Lab, with other victims spread across countries including Britain, France, Germany, Italy, Poland and the United States. The total number of attacks was unknown.

Security experts said they expected the impact to be smaller than WannaCry since many computers had been patched with Windows updates in the wake of WannaCry last month to protect them against attacks using Eternal Blue code.

Still, the attack could be more dangerous than traditional strains of ransomware because it makes computers unresponsive and unable to reboot, Juniper Networks said in a blog post analyzing the attack.

Researchers said the attack may have borrowed malware code used in earlier ransomware campaigns known as "Petya" and "GoldenEye".

Following last month's attack, governments, security firms and industrial groups aggressively advised businesses and consumers to make sure all their computers were updated with Microsoft patches to defend against the threat.

The US Department of Homeland Security said it was monitoring the attacks and coordinating with other countries. It advised victims not to pay the extortion, saying that doing so does not guarantee access will be restored.

In a statement, the White House National Security Council said there was currently no risk to public safety. The United States was investigating the attack and determined to hold those responsible accountable, it said.

The NSA did not respond to a request for comment. The spy agency has not publicly said whether it built Eternal Blue and other hacking tools leaked online by an entity known as Shadow Brokers.

Several private security experts have said they believe Shadow Brokers is tied to the Russian government, and that the North Korean government was behind WannaCry. Both countries' governments deny charges they are involved in hacking.

'DON'T WASTE YOUR TIME'

The first attacks were reported from Russia and Ukraine.

Russia's Rosneft, one of the world's biggest crude producers by volume, said its systems had suffered "serious consequences," but added oil production had not been affected because it switched over to backup systems.

Ukrainian Deputy Prime Minister Pavlo Rozenko said the government's computer network went down and the central bank reported disruption to operations at banks and firms including the state power distributor.

Danish shipping giant AP Moller-Maersk said it was among the victims, reporting outages at facilities including its Los Angeles terminal.

WPP, the world's largest advertising agency, said it was also infected. A WPP employee who asked not to be named said that workers were told to shut down their computers: "The building has come to a standstill."

A Ukrainian media company said its computers were blocked and it was asked to pay USD300 in the crypto-currency bitcoin to regain access.

"Perhaps you are busy looking for a way to recover your files, but don't waste your time. Nobody can recover your files without our decryption service," the message said, according to a screenshot posted on Ukraine's Channel 24.

Russia's central bank said there were isolated cases of lenders' IT systems being infected. One consumer lender, Home Credit, had to suspend client operations.

Other companies that identified themselves as victims included French construction materials firm Saint Gobain , US drugmaker Merck & Co and Mars Inc's Royal Canin pet food business.

JNPT AFFECTED

India-based employees at Beiersdorf, makers of Nivea skin care products, and Reckitt Benckiser, which owns Enfamil and Lysol, told Reuters the ransomware attack had impacted some of their systems in the country.

AP Moller-Maersk, one of the affected entities globally, operates the Gateway Terminals India (GTI) at JNPT, which has a capacity to handle 1.8 million standard container units.

"We have been informed that the operations at GTI have come to a standstill because their systems are down (due to the malware attack). They are trying to work manually," a senior JNPT official said tonight.

The official explained that JNPT is trying to help the company, but there is little that others can do as the problem s with the systems.

Fearing some clogging up of cargo, additional parking space is being made available, the official said, promising to help in any way that is possible.

Western Pennsylvania's Heritage Valley Health System's entire network was shut down by a cyber attack on Tuesday, according to local media reports.

WANNACRY

Last's month's fast-spreading WannaCry ransomware attack was crippled after a 22-year-old British security researcher Marcus Hutchins created a so-called "kill switch" that experts hailed as the decisive step in slowing the attack.

Security experts said they did not believe that the ransomware released on Tuesday had a kill switch, meaning that it might be harder to stop.

Ukraine's cyber police said on Twitter that a vulnerability in software used by MEDoc, a Ukrainian accounting firm, may have been an initial source of the virus, which researchers including cyber intelligence firm Flashpoint said could have infected victims via an illegitimate software update.

In a Facebook post, MEDoc confirmed it had been hacked but denied responsibility for originating the attack.

An adviser to Ukraine's interior minister said earlier in the day that the virus got into computer systems via "phishing" emails written in Russian and Ukrainian designed to lure employees into opening them.

According to the state security agency, the emails contained infected Word documents or PDF files as attachments.

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.
News Network
April 2,2020

Mumbai, Apr 2: NCP chief Sharad Pawar on Thursday

urged Muslims to observe Shab-e-Barat staying inside their homes, and also suggested that the birth anniversary celebrations of Dalit icon Dr B R Ambedkar be postponed in view of the coronavirus outbreak.

Pawar said Ram Navami, being observed on Thursday, is celebrated with fervour every year across the country.

"Unfortunately, there is this threat of coronavirus this year and we have to observe some restrictions...but I am sure people must be remembering Lord Ram staying inside their homes," he said in his address via Facebook.

Shab-e-Barat, also known as the night of forgiveness,will be observed on April 8.

Members of the Muslim community visit graveyards to remember their relatives who are no more, Pawar said, and called for taking precautions to avoid gathering of people given the coronavirus crisis.

Pawar said congregation such as the one held last month in Delhi's Nizamuddin area by Tablighi Jamaat could have been avoided, and urged people to ensure there is no repeat of such meetings on Shab-e-Barat.

"The meeting should have been avoided, but it was notand others may have to pay for it," Pawar said referring to the religious meeting in the national capital.

He said the "possibility of some people who attended the meeting carrying the disease cannot be ruled out" and pressed for maintaining discipline given the situation caused by the COVID-19 outbreak.

"Shab-e-Barat is on April 8. Muslims remember their relatives, who are not more, by visiting kabrastan (graveyard). It should be observed inside home. Precaution should be taken to see there is no repeat of the Nizamuddin meeting-like episode," he said.

The birth anniversary of Ambedkar, the architect of the Indian Constitution, is observed on April 14.

Pawar said people should also think about postponing Ambedkar's birth anniversary celebrations.

"We normally celebrate it (the anniversary) for two or so months. We should think whether we should really observe the programme at this juncture (given the coronavirus threat).

If we come together, we may have to face health issues," the former Union minister said.

He said in general, 90 per cent people have been observing the lockdown, but 10 per cent are not doing so.

The Centre and the Maharashtra government may have to extend the lockdown period if discipline is not observed till April 14 (till when the lockdown is in force), he said, urging people to toe the line in the interest of each other.

Pawar also praised Chief Minister Uddhav Thackeray, the state administration and police for working round-the- clock, and asked people to cooperate with them by staying at home.

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.
News Network
March 3,2020

New Delhi, Mar 3: A day after two new cases of novel coronavirus that included one from Delhi were reported, the Health Ministry on Tuesday said six cases with "high-viral load" were detected during sample testing in Agra and these people have been kept in isolation. The six people had come in contact with a 45-year-old patient from Delhi, whose case came to light on Monday, and they include his family members.

According to government sources, the man, who is a resident of Mayur Vihar, had visited them in Agra.

The six have been kept in isolation at Safdarjung Hospital in Delhi and their samples are being sent to NIV, Pune for confirmation.

Contact tracing of the people who came in contact with the six is simultaneously being done through the Integrated Disease Surveillance Program (IDSP) network, the ministry said in a statement.

Sources said the patient from Mayur Vihar was shifted to a quarantine ward at Safdarjung Hospital on Sunday night.

His other family members have been asked to stay alert and look out for symptoms. One accountant, who came in contact with the man and some of his family members, was also quarantined, they said.

India on Monday reported two new cases of the novel coronavirus, one from Delhi and another one from Hyderabad. The government has stepped up its efforts to detect and check the infection which has killed 2,912 people in China.

On Monday, Rajasthan Health Minister Raghu Sharma had said that an Italian tourist tested positive for coronavirus in Jaipur.

The first sample collected from him on February 29 tested negative but his condition deteriorated, so a second sample was collected which tested positive on Monday, the minister said, adding, "Since there is a variation in the reports, the samples have been sent to the NIV, Pune for testing".

India had earlier reported three cases from Kerala, including two medical students from Wuhan in China, the epicentre of the deadly novel coronavirus. They had self-reported on their return to the country and tested positive for the infection. They were discharged from hospitals last month following recovery.

The infected person from Delhi had travelled to Italy, while the other patient who tested positive for the COVID-19 infection is from Telangana and had recently travelled to Dubai.

Both the patients had self-reported after they developed symptoms.

"They tested positive. They are stable and being closely monitored," ministry said on Monday.

The government has asked people to avoid non-essential travel to Iran, Italy, South Korea and Singapore and said India was in discussions with authorities in Iran and Italy, two countries badly affected by the infection, to evacuate Indians there.

The novel coronavirus or COVID-19, which originated in China, has spread to over 60 countries.

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.
News Network
March 6,2020

Mumbai, Mar 6: Harried Yes Bank depositors rushed to ATMs to withdraw cash but faced multitude of problems including closed down machines and long queues, after the RBI placed the bank under a moratorium, capping maximum withdrawals at Rs 50,000 per account for a month.

Aggravating the problems of depositors were difficulties accessing the internet banking channel, which ensured that they can't transfer the funds online as well. At an ATM in south Mumbai's Horniman Circle, with the RBI headquarters overlooking it, the shutters were pulled down.

The guard on duty said the machine was non-operational before he reported to work late in the evening and he was ordered to shut it after 2200 hrs. In the residential area of suburban Chembur, one ATM was dispensing cash but had a long queue of anxious depositors.

One man said it was still possible to withdraw up to Rs 50,000 in multiple transactions from the machine.

However, another machine nearby had run dry within minutes of the RBI announcement, a woman said.

The regulatory actions, undertaken by the RBI and the government, came hours after finance ministry sources confirmed that SBI was directed to bail out the troubled lender.

For the next month, Yes Bank will be led by the RBI-appointed administrator Prashant Kumar, an ex-chief financial officer of SBI.

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.