Petya ransomware variant attacks computers worldwide

29 June 2017

Hot on the heels of last month’s Wannacry attack that caught global media attention arrives the latest outbreak of ransomware that is spreading rapidly across Europe and other continents. The culprit? A new variant of the Petya ransomware family, also known as Petna in IT security circles. For the remainder of the article we will refer to the ransomware simply as Petya.
Spotted earlier this morning, the ransomware hit the Ukraine particularly badly, affecting government branches, Kiew airport, the metro system, the state energy provider Ukrenergo, the central bank and even the defunct Chernobyl nuclear power plant.
Further infections have been confirmed by businesses in other parts of Europe, including British ad agency WPP, French construction company Saint-Gobain, Russian oil company Rosneft and Danish shipping giant AP Moller-Maersk. Until now, the ransomware infection has been confirmed in more than 14 countries including the US, Mexico, Iran and Brazil; yet we expect a lot more countries to be affected.
Perhaps most surprising is the fact that this latest Petya ransomware variant uses the same NSA exploits that allowed Wannacry to infect more than 200,000 computers in May this year. Despite security patches and advice that followed, it appears many companies did not heed the advice from security experts.
Will this latest ransomware attack be even worse than Wannacry? And what can be done to secure your computer and networks?

emsisoft petya ransomware

emsisoft petya ransomware

Petya ransomware variant attacks computers worldwide

Think Fast: Nyetya is here New Ransomware Variant Surges

29 June 2017

WannaCry just faded from the headlines. But ransomware has surged into the news again with a new malware variant, that we have named Nyetya, wreaking havoc in networks globally.
What does this mean? It means attackers don’t rest – but rather they innovate. They evolve. Of course we must too.
Nyetya is nasty because it encrypts the master boot record (like a table of contents for a hard drive) of a computer. Not good. Once it enters a system, it uses three ways to spread automatically in a network, one of which is the known Eternal Blue vulnerability, which WannaCry used as well. Also bad.
Some infections may even be associated with a familiar tax accounting software package to get its foot in the door when initially infecting networks.
For a world-class, in-depth analysis on Nyetya, see our blog by Talos, Cisco Security’s threat intelligence team, covering how the ransomware operates and what security protections will keep you safe against it.
Please join our webinar: “Nyetya. Global Ransomware Attack. What you want to know.” this Friday, June 30, 2017, at 7 am PDT / 3 pm BST / 4 pm CEST to hear the latest on the attack.

Think Fast: Nyetya is here

Think Fast: Nyetya is here


16 June 2017


emsisoft for business

emsisoft for business

Emsisoft Mobile Security scores 100% malware detection rate

18 March 2017

mobile AV emsisoft

mobile AV emsisoft

AV-Comparatives has released their “biggest-ever test of security apps against Android malware“, testing more than 110 anti-malware apps for Android on real devices against the 1000 most common malware threats of 2016. We are delighted to announce that Emsisoft Mobile Security scored a 100% detection rate during the test. This places our product firmly at the top level to protect you from the ever growing threat of Android malware.
Given the large amount of anti-malware apps on the Google Play Store, many of them free of charge, it’s tempting to be lured in by the latest ad on Facebook or a high rating. Yet the AV-Comparatives test revealed that more than 25 apps detected less than 30% of malware samples, and many of them were either ineffective, buggy, or even plain misleading.
Andreas Clementi, CEO of AV-Comparatives, commented, “This test shows clearly that when it comes to security, users cannot rely on numbers of downloads or user ratings to determine how effective an app is. Almost all of the apps we tested had user ratings of 4 or above out of 5 in the Google Play Store, but over a quarter of them failed to offer even basic protection against common threats”.

Emsisoft Mobile Security: Trusted protection for your Android device
When it comes to protecting your digital life, mobile phones are at the center of most of our lives, containing precious photos, contacts and location information. Don’t skimp on protection; choose a product from a vendor you can trust. Emsisoft prides itself on keeping users safe without impacting the performance of their devices. Find out more by visiting our Emsisoft Mobile Security page.

About AV-Comparatives
AV‐Comparatives is an ISO 9001:2015 and EICAR certified independent organization, based in Austria, offering systematic testing that checks whether security software, such as PC/Mac‐based anti‐virus products and mobile security solutions, lives up to its promises. Using one of the largest sample collections worldwide, it creates a real‐world environment for truly accurate testing. AV‐Comparatives offers freely accessible results to individuals, news organizations and scientific institutions. Certification by AV‐Comparatives provides an official seal of approval for software performance which is globally recognized.

AMD to launch Ryzen 5 chips next month, PCR-Online

16 March 2017

Hot on the heels of the Intel-busting Ryzen 7 chips earlier this month, AMD is further adding to the range with four Ryzen 5 SKUs: 1600X, 1600, 1500X and 1400.
According to VideoCardz, the processors will be priced between $249 and $169 (we’ve reached out to AMD to get a UK price point) and will be available starting April 11th. While UK specifics are yet to be announced, it’s expected that the chips will be available through the company’s UK distributor partners AVNET and VIP.

AMD Ryzen

AMD Ryzen

Mac security facts and fallacies – by Thomas Read

14 March 2017

Mac security facts and fallacies
Posted March 8, 2017 by Thomas Reed
There are many Mac security myths circulating among users. So how can you tell if the advice you’re reading is fact or fallacy? Read on to find out!
Fallacy: Macs don’t get viruses
The idea that there are no viruses for the Mac goes back to the beginning of Mac OS X, at the very beginning of this millennium. Most people associate this idea most strongly with the “I’m a Mac/I’m a PC” commercials from a decade ago, such as this one that ran in 2006:
Unfortunately, this is a myth. As with most good myths, though, there’s a slight element of truth.
Technically speaking, a virus is malware that spreads by itself, by attaching itself to other files. By this strict definition, there are no Mac viruses. However, by that token, there also aren’t very many Windows viruses these days, either. Viruses have mostly disappeared from the threat landscape.
The average person, though, understands a virus to be any kind of malicious software. (A better term for this is “malware.”) Since there definitely is malware for the Mac, as well as a plethora of other threat types, the spirit of the “there are no Mac viruses” claim is completely false. Don’t allow yourself to be misled!

Mac security facts and fallacies

mac infection - facts and fallacies

mac infection – facts and fallacies

Spring clean your PC in 5 simple steps and prevent malware

8 February 2017

Spring clean your PC in 5 simple steps and prevent malware

1. Remove unused software
Over time you’ve probably acquired quite a few applications that you’re no longer using. You know the programs, like that trial CD burning program you downloaded to make your mum a copy of the latest Michael Bublé album. Consider these apps the mouldy leftover cheese rotting in the back of your fridge you forgot were there.
Delete. Them. All.
You won’t regret it and if you need these programs again in the future, you can always download up-to-date versions. Aside from acting as backdoor access points for hackers, these programs take up space on your computer and slow it down. Who needs to scroll through 100 unused programs just to get the one you actually need?

2. Install all system and software updates
You’re sitting at your computer and one of those little icons pops up alerting you to the fact that, yet again, you need to update another program. Constantly installing and updating your software may seem painful, and you may wonder why Windows needs to be updated every couple of minutes (or so it seems), but the cost of ignoring them may end up being much higher than the 2 minute restart that is required.
So, why are updates so important? Because they address important changes to the program such as:
Security Vulnerability Fixes: More than 90% of software and operating system (OS) updates are to patch security vulnerabilities in programs (like those sneaky backdoor access points we keep mentioning in this article).
Bug Fixes and Product Enhancements: The best reason to keep software updated is to address security holes in programs, but it’s also nice to have the latest features to improve your program’s performance.
If you find manually updating software too troublesome, why not try an auto-update program such as Secunia PSI which actively makes sure all critical software is kept up-to-date without you having to lift a finger.

3. Do a malware scan
If you haven’t got one already, make sure to install an anti-malware program such as Emsisoft Anti-Malware or Emsisoft Internet Security, and do a thorough scan of your computer. It also doesn’t hurt to download our Emsisoft Emergency Kit for a free, fast second opinion, particularly if you have only relied on the Windows Defender for protection. Emsisoft Emergency Kit runs without installation and will give you the added peace of mind that your system is free from rootkits and other malware files. Put it on a USB and run it on as many machines as you need. Regardless of the solution, make sure you scan your drives regularly.

4. Back up your system
While it can feel a little like having your car serviced – you know you should do it, but don’t as often as you should — regular backups stored on a disconnected device really are the best defense, particularly against ransomware attacks. Ransomware will often explicitly target backups which is why it is important to store them where they can’t be readily reached. In general, there are two options:
External hard drives are a good option as they can be kept physically disconnected from your computer and locked away for safekeeping. However, if it remains plugged in, it is as susceptible to ransomware as the hard disk of your computer. So keep your backup separate. Keep it updated. And consider encrypting both your computer’s hard disk and the portable one while you’re at it. If you want to know more about file encryption, we explored the benefits it in this post.
Backing up online using a cloud service is a convenient option that will also protect your data in case of theft, damage or other physical threats. There are many reliable options such as CrashPlan, BackBlaze, Carbonite or MozyHome. These programs will run in the background, updating your files in the programs web storage. Keep in mind this option usually requires a monthly fee and the first backup can take quite a long time, particularly if you have a lot of files accumulated over the years.
An external disk drive detached from your PC gives you the guarantee that while it is not attached to your computer it can’t be accessed. A cloud based file storage will auto-save in the background and can be disconnected by logging out. But regardless of your chosen method, regular (preferably daily) backups are still the best insurance policy against ransomware attacks. Read more about safeguarding your personal data to prevent ransomware on the Emsisoft blog.

5. Maintain a quality anti-malware solution on your system
Your first line of defence should always be an up-to-date PC security suite. Having an anti-malware solution that will monitor program behaviour and catch any online threats, including ransomware, will create extra layers of protection. Rest assured we think that our products are a pretty good solution, particularly if you don’t want to slow down your system unnecessarily, but the important thing is that you pick the one that caters to your individual needs.

Emsisoft product updates and new versioning scheme

3 February 2017

At Emsisoft, we have a simple but powerful belief: if you purchase one of our anti-malware products, you will not just buy a piece of software, but the latest and best possible protection for your devices. This service driven philosophy is practiced throughout all of Emsisoft, from software development to support, working in short cycles to deliver constant innovation to you, our customer.
That is why we are announcing that we will retire our current versioning scheme for Emsisoft Anti-Malware, Emsisoft Internet Security and Emsisoft Enterprise Console and replace it with a simple one based on year and month, starting with the January release 2017.1.
What does this mean for you?
First of all, don’t worry: you will be just as protected as you have been previously, and apart from a new version number appearing in your software with the next update, everything will stay the same. What’s exciting is that new features for our Windows anti-malware products, whether big or small, will now be launching more frequently, rather than being rolled up in an annual release. Malware never sleeps, but neither do we.
Accompanying this change will be blog posts (just like this one) focusing on all the exciting new features and improvements our team is introducing, as well as a newsletter to make sure you’ll know about the latest news as soon as they go live.

Introducing: Emsisoft product updates and new versioning scheme (2017.1)

Centralized anti-malware management (malware, anti-virus)

1 December 2016

Keeping company data protected from malware and other online threats is a key priority in today’s connected business world, but managing it effectively across a large and diverse organization with hundreds of client machines can be complex. Emsisoft Enterprise Console takes the pain out of managing multiple seats, so you and your customers can deploy Emsisoft Anti-Malware across your businesses with ease.
Deploy and manage up to 500 clients with ease
Emsisoft Enterprise Console is a free, comprehensive management tool to centrally deploy, organize and monitor Emsisoft Anti-Malware for up to 500 clients within a company network.
It comes packed with features that are critical to managing anti-malware solutions across an organization. Here are some benefits your customers will appreciate:
• Remotely deploy endpoint protection with a click
• Run software updates and scans centrally
• Set user permission and protection settings by groups (e.g. departments)
• Create advanced custom reports on malware findings, software behavior and more
Using Emsisoft Enterprise Console will save your customer time, money and hassle.

antivirus; virus; malware

Emsisoft Enterprise Console

Emsisoft Mobile Security 3.0 – malware protection and more for your Android

10 November 2016

Gone are the days when your phone was just your phone. Now, we all rely on our mobile devices for work, social connection and for managing our lives. Your mobile contains your contacts, family photos and saves private financial information such as your online banking and credit card details. And, just like your home PC, your mobile phone can be reprogrammed to act like a computer or give you remote access to your PC. Our mobile devices are intimately connected to almost everything we do.

Malware attacks on mobile devices are on the rise and any internet capable device has the potential to be infected.

That’s why protection has never been as important as it is today. Cleaning out your phone after it has been infected won’t bring back lost data. You have to make sure your personal data doesn’t get stolen or spied on in the first place.

We partnered with mobile segment leader Bitdefender to bring you the best mobile protection available incorporated as Emsisoft Mobile Security. Bitdefender’s technology is highly regarded in the industry earning 100% from AV-Test. Our partnership gives you the best of both worlds; the best mobile protection on the market bundled with our award winning Emsisoft Anti-Malware.

read more at…


emsisoft and android