The Free Press Journal

Companies still hobbled from fearsome cyberattac­k

-

Many businesses still struggled to recover hopelessly scrambled computer networks, collateral damage from a massive cyberattac­k that targeted Ukraine three days ago.

The Heritage Valley Health System couldn’t offer lab and diagnostic imaging services at 14 community and neighborho­od offices in western Pennsylvan­ia. DLA Piper, a London-based law firm with offices in 40 countries, said on its website that email systems were down; a receptioni­st said email hadn’t been restored by the close of business day.

Dave Kennedy, a former Marine cyberwarri­or who is now CEO of the security company TrustedSec, said one U.S. company he is helping is rebuilding its entire network of more than 5,000 computers.

“It hit everything, their backups, servers, their workstatio­ns, everything,” he said. “Everything was just nuked and wiped.”

Kennedy added, “Some of these companies are actually using pieces of paper to write down credit card numbers. It’s crazy.”

The cyberattac­k that began Tuesday brought even some Fortune 1000 companies to their knees, experts say. Kennedy said a lot more “isn’t being reported by companies who don’t want to say that they are hit.”

The malware, which security experts are calling NotPetya, was unleashed through Ukraine tax software, called MeDoc. Customers’ networks became infected downloadin­g automatic updates from its maker’s website. Many customers are multinatio­nals with offices in the eastern European nation.

The malware spread so quickly, working its way automatica­lly through interconne­cted private networks, as to be nearly unstoppabl­e. What saved the world from digital mayhem, experts say, was its limited business-tobusiness connectivi­ty with Ukrainian enterprise­s, the intended target. Had those direct connection­s been extensive on the level of a major industrial nation “you are talking about a catastroph­ic failure of all of our systems and environmen­ts across the globe. I mean it could have been absolutely terrifying,” Kennedy said.

Microsoft said NotPetya hit companies in at least 64 nations, including Russia, Germany and the United States. Victims include drug giant Merck & Co. and the shipping company FedEx’s TNT subsidiary. Trade in FedEx stock was temporaril­y halted Wednesday. One major victim, Danish shipping giant A.P. MaerskMoll­er, said Friday that its cargo terminals and port operations were “now running close to normal again.”

It said operations had been restored in Spain, Morocco, India, Brazil, Argentina and Lima, Peru, but problems lingered in Rotterdam, the Netherland­s; Elizabeth, New Jersey; and Los Angeles. An employee at an internatio­nal transit company at Lima’s port of Callao told The Associated Press that Maersk employees’ telephone system and email had been knocked out by the virus so they were “stuck using their personal cellphones.”

The malware, which security experts are calling NotPetya, was unleashed through Ukraine tax software, called MeDoc. Customers’ networks became infected downloadin­g automatic updates from its maker’s website. Many customers are multinatio­nals with offices in the eastern European nation.

Newspapers in English

Newspapers from India