Cyberattack hits FEDEX, NHIS and 74 countries
A global cyberattack hit international shipper FedEx, disrupted Britain’s health system and infected computers in at least 74 countries on Friday.
The attack was said to have leveraged the hacking tools widely believed by researchers to have been developed by the U.S. National Security Agency
Russian cyber security software maker Kaspersky Lab said its researchers had observed more than 45,000 attacks in 74 countries as of early Friday, although it expected the numbers to increase.
British hospitals and clinics were forced to turn away patients because their computers were infected by a pernicious new form of “ransomware” that rapidly spread across the globe, demanding payments of as much as $600 to restore access and scrambling data.
Leading international shipper FedEx Corp said it was one of the companies whose Microsoft Corp Windows system was infected with the malware that security firms said was delivered via spam emails.
Only a small number of U.S.-headquartered organizations were infected because the hackers appear to have begun the campaign by targeting organizations in Europe, said Vikram Thakur, research manager with security software maker Symantec.
By the time they turned their attention to U.S. organizations, spam filters had identified the new threat and flagged the ransomware-laden emails as malicious, Thakur said.
“Like many other companies, FedEx is experiencing interference with some of our Windows-based systems caused by malware,” a spokeswoman said in a statement. “We are implementing remediation steps as quickly as possible.”
Telecommunications company Telefonica was among many targets in Spain, though it said the attack was limited to some computers on an internal network and had not affected clients or services. Portugal Telecom and Telefonica Argentina both said they were also targeted in the attacks.
Private security firms identified the ransomware as a new variant of “WannaCry” that had the ability to automatically spread across large networks by exploiting a known bug in Microsoft’s Windows operating system.
“Once it gets in and starts moving across the infrastructure, there is no way to stop it,” said Adam Meyers, a researcher with cyber security firm CrowdStrike.