The ransomware in question is a new strain of the Petya ransomware family, modded to take advantage of the same EternalBlue SMB vulnerability as the WannaCry ransomware, to rapidly spread within local area networks. Petya has been around since early 2016, instead of encrypting files it goes after locking out the operating system, by attacking the operation system’s Master File Table (MFT), which is far quicker than encrypting each file on the system individually.
Read full news article on IT Security Expert