Dear Visitor,

Our system has found that you are using an ad-blocking browser add-on.

We just wanted to let you know that our site content is, of course, available to you absolutely free of charge.

Our ads are the only way we have to be able to bring you the latest high-quality content, which is written by professional journalists, with the help of editors, graphic designers, and our site production and I.T. staff, as well as many other talented people who work around the clock for this site.

So, we ask you to add this site to your Ad Blocker’s "white list" or to simply disable your Ad Blocker while visiting this site.

Continue on this site freely
  HOME     MENU     SEARCH     NEWSLETTER    
THE ENTERPRISE SECURITY SUPERSITE. UPDATED 4 MINUTES AGO.
You are here: Home / Viruses & Malware / Malware Patient Zero Facing Charges
CyberPolice Say Firm at Center of Cyberattack Was Warned
CyberPolice Say Firm at Center of Cyberattack Was Warned
By Raphael Satter Like this on Facebook Tweet this Link thison Linkedin Link this on Google Plus
PUBLISHED:
JULY
04
2017
The small Ukrainian tax software company that is accused of being the patient zero of a damaging global cyberepidemic is under investigation and will face charges, the head of Ukraine's CyberPolice suggested Monday.

Col. Serhiy Demydiuk, the head of Ukraine's national Cyberpolice unit, said in an interview with The Associated Press that Kiev-based M.E. Doc's employees had blown off repeated warnings about the security of their information technology infrastructure.

"They knew about it," he told the AP at his office. "They were told many times by various anti-virus firms. ... For this neglect, the people in this case will face criminal responsibility."

Demydiuk and other officials say last week's unusually disruptive cyberattack was mainly spread through a malicious update to M.E. Doc's eponymous tax software program, which is widely used by accountants and businesses across Ukraine.

The malicious update, likely planted on M.E. Doc's update server by a hacker, was then disseminated across the country before exploding into an epidemic of data-scrambling software that Ukrainian and several other multinational firms are still recovering from.

M.E. Doc initially denied playing any such role in the malicious software's spread but later deleted the statement from Facebook. The company, which says it is cooperating with authorities, has not returned messages seeking comment.

Meanwhile, several companies hit by last week's cyberattack say they were edging closer to normalcy.

Law firm DLA Piper said late Sunday that it has restored its email service and was working to bring its other networks back online. Danish shipper A.P. Moller-Maersk said "our operations are now running close to normal again." Russian companies were reportedly affected as well; Russian state-owned oil giant Rosneft said Monday it had taken the company 6 days to fully repair its computer systems after they were badly hit in the cyberattack.

Ukrainian authorities have blamed Russia for masterminding the outbreak, although several independent experts say it's too early, based on what's publicly known, to come to any firm conclusions. Ukraine has repeatedly come under fire from high-powered cyberattacks tied to Moscow.

The extent of the damage and disruption in Ukraine was still unclear Monday. Authorities have yet to release an accounting of the number of victims or an estimate of the monetary damage done by the virus, and Demydiuk said his service was still collating figures and declined to even provide an estimate.

It's clear though that the economic disruption has been non-negligible. Some bank employees have not been to work in days.

Hanna Rybalka, who works at the state-owned Oschadbank's headquarters in Kiev, said that business had taken nearly a week to recover.

"Today is the first day of full-time work," she said in a Facebook message Monday.

© 2017 Associated Press under contract with NewsEdge/Acquire Media. All rights reserved.

Image credit: iStock.

Tell Us What You Think
Comment:

Name:

Like Us on FacebookFollow Us on Twitter
MORE IN VIRUSES & MALWARE
ENTERPRISE SECURITY TODAY
NEWSFACTOR NETWORK SITES
NEWSFACTOR SERVICES
© Copyright 2017 NewsFactor Network. All rights reserved. Member of Accuserve Ad Network.