ORLANDO, Fla. -- Companies are still still hobbled from a fearsome cyberattack that first targeted hospitals last month throughout Ukraine and slowly spread across the globe, according to the AP.
The Heritage Valley Health System couldn’t offer lab and diagnostic imaging services at 14 community and neighborhood offices in western Pennsylvania. DLA Piper, a London-based law firm with offices in 40 countries, said on its website that email systems were down; a receptionist said email hadn’t been restored by the close of business day.
Dave Kennedy, a former Marine cyberwarrior who is now CEO of the security company TrustedSec, said one U.S. company he is helping is rebuilding its entire network of more than 5,000 computers, according to the Associated Press, saying in part, “It hit everything, their backups, servers, their workstations, everything. Everything was just nuked and wiped. Some of these companies are actually using pieces of paper to write down credit card numbers. It’s crazy.”
The cyberattack that began in late June brought even some Fortune 1000 companies to their knees, experts say. Kennedy said a lot more “isn’t being reported by companies who don’t want to say that they are hit.”
Here is how the cyberattack went down, according to the AP: The malware, which security experts are calling NotPetya, was unleashed through Ukraine tax software, called MeDoc. Customers’ networks became infected downloading automatic updates from its maker’s website. Many customers are multinationals with offices in the eastern European nation. The malware spread so quickly, worming its way automatically through interconnected private networks, as to be nearly unstoppable. What saved the world from digital mayhem, experts say, was its limited business-to-business connectivity with Ukrainian enterprises, the intended target.