Cyber Threat Advisory Summary - Data Destroying Malware Post WannaCry & NotPetya

Cyber Threat Advisory Summary - Data Destroying Malware Post WannaCry & NotPetya's Tags

Tags related to this article

Cyber Threat Advisory Summary - Data Destroying Malware Post WannaCry & NotPetya

Published 9 October 2017

After the devastating effects of the WannaCry and NotPetya data destroying malware we have seen a variety of incoming requests for analysis and capability around this type of threat.

One client engaged to have NotPetya re-implemented but without the data destruction payload.

They are in the process of deploying this neutered version in their live environment to understand what the impact could have been. Their approach builds cyber resilience being about detection and response to include real-world impact understanding of fast spreading destructive payloads.

In a similar vein, our CISO Research Council asked us to provide a view on Integrity destroying malicious code. Namely code that subtly corrupts data over a longer period rather than the big bang we see today. We do not foresee this threat to be wide spread in the short term but there are geopolitical drivers for some actors to consider this approach.

To read the paper click here or if you have questions email response@nccgroup.trust.

Authors

Hans Allnutt

Hans Allnutt

London - Walbrook

+44 (0) 20 7894 6925

Rhiannon Webster

Rhiannon Webster

London - Walbrook

+44 (0)20 7894 6577

Patrick Hill

Patrick Hill

London - Walbrook

+44 (0)20 7894 6930

< Back to articles