Book Now

Quick Contact

Talk to our team

Email

[email protected]

Phone

+91 8289885662

Social

fb-footer
instagram-footer
Twiiter
youtube-footer
linkedin-footer
Blog -------- December 31st, 2020

NOTPETYA MALWARE: Cyber World’s Foe

Share
Notpetya-malware-cybersecurity

As technology is advancing, cyber or malware attacks have increased over the past decades. Because of the attack, the world’s cybersecurity is questioned. Different forms of ransomware have created a tremendous hazard in the cyber world. One of the major malware attacks that multinational companies have to face is the Not Petya attack.  

What happened at Maersk?notpetya-cyebrsecurity

Maersk, the biggest container ship and supply vessel operator in Denmark was faced with an unexpected ransomware attack on 27 June 2017. The company was badly affected by a malware known as Notpetya and around 4000 to 40000 servers and PCs were under attack. The attackers spread the malware after grasping control of the software update mechanism of M.E.Doc, the de Facto standard accountancy package for firms doing business in Ukraine.

What is Notpetya malware?notpetya-wattlecorp-blog-cybersecurity

  Notpetya is an advanced version of Petya malware which was discovered in the year 2016. Petya ransomware encrypts the data of the infected system and charges a ransom amount in Bitcoin to regain the system. It mainly targets Microsoft-based systems encrypts the hard drive’s file and prevents Windows from booting. NotPetya has more features than Petya, which helps to spread and infect the system. NotPetya is considered as a cyber attack against Ukraine but the malware has affected not only the target but also infected machines all over the world. The malware has been infected in many multinational companies including Maersk during the year 2016-17. 

Is Notpetya more dangerous than the earlier form?

  It is considered that both Petya and Notpetya target system files, encrypt them, and demand a ransom in the form of bitcoin. The Petya malware has to be downloaded by the victim that appears in the form of email spam and it starts to encode the system. But Notpetya is a kind of malware that is infected without the knowledge of the user and uses a variety of techniques to spread all over the system including EternalBlue and EternalRomance, two exploits developed by the United States.

It takes advantage of a tool called Mimi Katz to find network administration documents in the infected system and use the PsExec and WMIC tools built into Windows to access the other computer’s local network and infect them as well. It encodes everything on the master boot and seriously affects the user’s hard drive. Notpetya ransomware is more vulnerable than the Petya ransomware as it damages the system and will be impossible to repair into the original form.  notpetya-blog

Read about the Manifestation of Malware in our blog.

How Maersk recovered from the attack?

  As the attack was serious the company took immediate actions that the IT experts gathered to track, identify, and remove malware from affected systems in order to restart their operations. Internal and external communications were established and the company transmitted daily updates about their dealings. They established several instructions to do all the actions required for the customers. 

Is Notpetya still active in the cyber world?notpetiya

  Studies have shown that the effect of Notpetya is still going on in different countries and experts claim the possibility that this malware can reoccur in a larger form than the earlier version. The only possible way to avoid a data breach is to update the system and its applications regularly. Prevent the downloading of unknown attachments and create a strong unique password to protect the system from any kind of malware attack.

Read About Ripple20

Anjali K

Anjali is a cybersecurity researcher with expertise in simplifying complex topics, from penetration testing to cloud security frameworks. Her work focuses on making essential security practices accessible, helping businesses and individuals adopt proactive measures to strengthen their digital defenses.

Share

Join 15,000+ Cybersecurity Innovators

Protect. Comply. Lead.

Secure your stack, stay compliant, and outpace threats with concise, field‑tested guidance on VAPT, cloud security, and regional privacy laws delivered by Wattlecorp’s
trusted advisors across the globe.

Leave a Comment

Your email address will not be published. Required fields are marked *

SOC 2 Compliance for DIFC and ADGM-Registered Companies: What’s Different? MidhlajMay 25th, 2026

Key Takeaways: SOC 2 isn’t a regulatory requirement in DIFC or ADGM but if you’re dealing with enterprise clients, investors, or international partners, it is quickly becoming something the market expects anyway. DIFC and ADGM have their own data protection frameworks, but SOC 2 goes further,  it asks whether your security, privacy, and operational controls […]

Read more >>
ransomware defense How Indian SaaS Enterprises Can Defend Against Ransomware in 2026 MOHAMMED NIZAMUDHEEN CMay 22nd, 2026

Key Takeaways: Ransomware defense for Indian enterprises in 2026 is identity-driven, which is not just malware-driven, access control is your first and most critical line of defense. Effective ransomware defense requires detection and response speed, not prevention tools alone. How fast you contain an attack determines the level of damage. Backup validation is as critical […]

Read more >>
AI Security Risks in Saudi Banking AI Security Risks in Saudi Banking: What SAMA Expects from FinTech and Banks in 2026 Aysha shafnaMay 20th, 2026

Key Takeaways: AI Security Risks in Saudi Banking are expanding faster than most existing cybersecurity programs can handle, and the gap is widening with every new deployment. SAMA regulations do not currently include a standalone AI cybersecurity rulebook; banks and FinTechs should assess AI use cases against applicable SAMA Cyber Security Framework control areas to […]

Read more >>
DIFC Data Protection Law DIFC Data Protection Law Amendment Guide for Dubai Financial Firms Adarsh pMay 18th, 2026

Key Takeaways: The DIFC data protection law amendment has raised compliance obligations significantly, firms relying on their pre-amendment posture are already exposed. DIFC Data Protection Law operates independently from UAE federal data protection law; financial firms within the Centre must meet its specific requirements directly. The Commissioner of Data Protection holds real enforcement authority, documentation […]

Read more >>
cybersecurity for Qatar logistics ports Cybersecurity for Qatar Logistics & Port Operators: Protecting Digital Supply Chain Systems  MidhlajMay 15th, 2026

Key Takeaways: OT systems controlling cargo equipment and port infrastructure are often among the most under-monitored and operationally sensitive layers in Qatar logistics security environments.  A single compromised vendor credential can silently reach core logistics systems long before any alert fires in your SOC. Cybersecurity for Qatar logistics ports is a revenue protection issue,  port […]

Read more >>
SAMA open banking security SAMA Open Banking Security: API Security Requirements for Saudi FinTech in 2026 MOHAMMED NIZAMUDHEEN CMay 13th, 2026

Key Takeaways: SAMA Open Banking has moved beyond sandbox-supervised testing into a formal licensing regime for approved open banking providers in Saudi Arabia. For every Saudi FinTech in KSA, API governance is what gets you to market. SAMA’s Open Banking Framework sets expectations around secure API-based data sharing, consent-driven access, and governance, while the SAMA […]

Read more >>
Connect Wattlecorp

Protecting your Business

Book a free consultation with us .

View Our Services

Enquire Now

Ask our experts.

STRENGTHEN YOUR CYBER DEFENSES

Prevent breaches, protect data and stay ahead of cyber threats with expert security solutions.

STRENGTHEN YOUR CYBER DEFENSES
-Request Your Compliance Security Assessment

Achieve Compliance with Confidence

Identify vulnerabilities and ensure compliance with expert security solutions.