Worldwide ransomware attack hits Australian organisations

May 14, 2017 |

Further  to the earlier post, the worldwide ransomware attack on computer systems that did not properly patch their Microsoft systems has hit Australian shores.  In First Australian business infected in global cyber attack the Fairfax press reports on the first formally acknowledged hack.  The number of computers affected by the virus has grown from 95,000 in 99 countries on Friday to 200,000 in 150 countries.  It is an unprecedented attack with the numbers are likely to increase when businesses turn on their computers on Monday.  The delivery system of the malware is by worm which seeks out weaknesses with other connected systems.

Ultimately this sort of attack should not succeed if a business had properly patched their Microsoft system.  The failure to do so is a failure to maintain proper data security system.  The attack may have occurred with the last week but the patch has been available since March.  The problem is lax regulation and poor enforcement.

The Fairfax article provides:

A global cyber attack that has struck computers across Europe and Asia is believed to have infected its first Australian business, the federal government says. 

The attack has hit more than 75,000 computers in 99 countries.

It has crippled Britain’s health system – with stroke victims unable to undergo urgent surgery because their scans could not be accessed – and affected other businesses around the world.

Prime Minister Malcolm Turnbull’s cyber security adviser, Alastair MacGibbon, said on Sunday there had been one confirmed incident in Australia, but warned it was likely more computer systems would eventually be hit.

“People going back to work on Monday may switch on their computers and see their systems have been impacted,” he said.

“We have one likely incident which is being investigated but we believe there could be more out there.”

Mr MacGibbon declined to comment on the identity or type of the business impacted by the unprecedented cyber attack but said it was a small company, which did not provide critical infrastructure. 

“The affected company doesn’t fall under critical infrastructure, it’s not a medical or health service and it is not a big company,” he said.

“The most important message we want to get out there is that we haven’t seen a wholesale impact like we’ve seen in Europe and other parts of the world. It appears at this stage, it is unlikely there will be any large-scale ramifications.”

Tens of thousands of computer were “locked” – the screens displaying the telltale ransom demand.

Local experts on Saturday scrambled to ensure hospitals and other public facilities did not fall victim to the massive ransomware operation, which had seen patients turned away and operations cancelled in Britain.

A mysterious, Russian-linked group called TheShadowBrokers last month claimed to have stolen the hacking tool, which may then have been acquired by another cyber gang and unleashed in Friday’s onslaught.

This particular attack used malicious emails to encrypt a computer’s data and demand payment of hundreds of dollars to decode the data.

One Response to “Worldwide ransomware attack hits Australian organisations”

  1. Worldwide ransomware attack hits Australian organisations | Australian Law Blogs

    […] Worldwide ransomware attack hits Australian organisations […]

Leave a Reply