Petya Ransomware: India Globally Seventh Worst-Affected by Cyber-Attacks, Says Symantec

Advertisement
By Indo-Asian News Service | Updated: 29 June 2017 14:15 IST
Highlights
  • India has come out as the worst-hit Asian country affected by Petya
  • Petya ransomware attack hit major global companies on Tuesday
  • In India, Mumbai's JNPT port reported to have been compromised too

India has become the worst-hit country in the Asia Pacific and Japan (APJ) region and the seventh most affected nation globally as a new ransomware 'Petya' hit on June 27, global cyber-security firm Symantec said on Thursday.

Mumbai's Jawaharlal Nehru Port Trust (JNPT), the country's largest container port and some local manufacturing units of global companies were hit, the government confirmed on Wednesday.

Advertisement

However, according to Information Technology Minister Ravi Shankar Prasad, India has largely remained insulated so far from the massive ransomware attack that started in Ukraine and Russia.

Advertisement

"The Petya ransomware attack was clearly inspired by the WannaCry attack, which received so much attention last month. The motives behind WannaCry are still unclear, however, it was not an effective approach to making money for its authors," said Gavin O'Gorman, an investigator in Symantec Security Response, in a post on Thursday.

The Petya ransomware was spread, at least in part, through updates to a Ukrainian tax accounting software. Symantec has confirmed that MEDoc, a tax and accounting software package, is used for the initial insertion of Petya into corporate networks.

Advertisement

MEDoc is widely used in Ukraine, indicating that organisations in that country were the primary target.

Once on a computer, the malware attempts to spread to all machines on the network, using a combination of stolen credentials and the "Eternal Blue" exploit.

Advertisement

"It also attempts to connect to any computers that the infected computer has recently interacted with. However, unlike WannaCry, it does not attempt to connect to random IP addresses across the internet," O'Gorman added.

Cyber-security experts believe that the new attack was caused by a variant of the Petya ransomware which was unleashed in 2016.

It differs from typical ransomware as it doesn't just encrypt files, it also overwrites and encrypts the master boot record (MBR), demanding that $300 (roughly Rs. 20,000) in Bitcoins be paid to recover files.

Get your daily dose of tech news, reviews, and insights, in under 80 characters on Gadgets 360 Turbo. Connect with fellow tech lovers on our Forum. Follow us on X, Facebook, WhatsApp, Threads and Google News for instant updates. Catch all the action on our YouTube channel.

Advertisement

Related Stories

Popular Mobile Brands
  1. Realme Narzo 100x 5G Debuts in India With a Dimensity 6300 5G SoC: See Price
  2. Motorola Edge 70 Max Debuts in India With a 50-Megapixel Camera: See Price
  3. Infinix Note 60 Pro Pininfarina Edition First Impressions
  1. Apple Intelligence Cleared for Use on iPhone in China, Will Rely on Chinese AI Models: Report
  2. Google Announces Play Catalog Access Program for Third-Party App Stores on Android Devices
  3. Cabinet Approves Mobile Phone Manufacturing Scheme With Rs. 62,500 Crore Budget to Scale Domestic Production
  4. Resident Evil 1 Remake Said to Have Entered Pre-Production Phase Last Year
  5. US, UK Treasuries Seek Common Framework for Tokenisation and Stablecoins
  6. Xiaomi 17 Series Reportedly Receives Stable Android 17-Based HyperOS 3 Update
  7. UK Tax Authority Announces ‘No Gain, No Loss’ Treatment for Select Crypto Transactions
  8. Microsoft to Revamp Phone Link App With Better Smartphone Integration on Windows 11: Report
  9. GoBoult Tenet Pro Launched in India With Up to 32dB ANC, Up to 75 Hours of Battery Life: Price, Features
  10. Spotify Rolls Out Conversational ChatGPT-Like Conversational AI Assistant for Music Discovery
Download Our Apps
Available in Hindi
© Copyright Red Pixels Ventures Limited 2026. All rights reserved.