Experts told how to fool the virus and Petya to avoid infection

To avoid Contracting the virus Petya.A, which spread around the world June 27, you need to pretend your computer is already infected. This was announced by the specialists of Symantec, reports Meduza.

So, the virus searches the computer file C:Windowsperfc. If it is already on the device, the virus performs the infection.

To create such a file using Notepad which is on every computer. Suggest to create a file perfc (without extension), or perfc.dll. In addition, the file should be done read-only, so the virus can’t modify it.

In turn, experts at FireEye have suggested that the virus could spread through the updating of accounting software M.E.Doc. The creators of the program deny it, because, according to them, the last update was sent out five days before the attack on June 22. However the police also believe that the attack occurred because of a vulnerability in the program for reporting and workflow M.E.doc.

As you know, 27 Jun largest hacking attackthat spreads the virus Petya.A, was subjected to Ukrainian banks, energy companies, government Internet resources and local network of Ukrainian media and a number of other large enterprises.

The attacks began almost simultaneously at about 11:30. Virus that locks computer systems, spread very quickly. It manifests itself in the failure of computers on a Windows platform, your computer restarts and the virus encrypts all the data on it.

Later, the postal and telecommunications of Ukraine issued a number of tips, compliance with which will help you avoid getting infected with a dangerous virus.

On the morning of 28 June, the press service of the Cabinet reported that mAstana cyber attack on corporate network and to the authorities of Ukraine was stopped.

Comments

comments