’Petya’ ransomware cyber-attack goes global, targets major multinational companies

NEW YORK - The US-based division of the global pharmaceutical giant Merck has been hit by the ‘Petya’ ransomware attack that has crippled computer systems across the world on Tuesday.

“We confirm our company’s computer network was compromised today as part of global hack,” Merck said in a statement on Tuesday. “Other organizations have also been affected. We are investigating the matter and will provide additional information as we learn more.”

https://twitter.com/Merck/status/879716775021170689

“The company is currently experiencing a hostile ransomware attack on its network systems,” said an internal Merck memo quoted by the Philadelphia Inquirer. “While IT risk management and global security respond to this threat please remain calm.”

Merck employees were instructed to disconnect all mobile devices from the company network and advised not to speak to reporters or post messages on social media accounts.

https://www.facebook.com/RTvids/videos/1617616521581928/

Computers at Merck facilities in Pennsylvania and New Jersey locked up Tuesday morning around 8am local time, according to the Inquirer.

The ransomware attack reportedly began in Ukraine, but has since spread to corporate systems across the world, affecting the Russian state oil giant Rosneft, the international shipping and energy conglomerate Maersk, and the UK-based advertising and public relations company WPP, among others.

"We can confirm that Maersk IT systems are down across multiple sites and business units. We are currently asserting the situation,” the company said.

https://twitter.com/Maersk/status/879679584282738688

Group IB, a Moscow-based cyber security company, said that hackers used a cryptolocker called “Petya,” which blocks access to computers and displays a message demanding a $300 ransom payable in bitcoin.

https://twitter.com/GroupIB_GIB/status/879736598535032832

The ransomware is reportedly related to “WannaCry,” a code derived from the US National Security Agency (NSA) and posted online by the hacker group ShadowBrokers. A WannaCry ransomware attack shut down over 200,000 computers globally in May.

No one has claimed responsibility for this latest attack.