New cyberattack causes mass disruption across Europe
A new and highly virulent outbreak of malicious data-scrambling software appears to be causing mass disruption across Europe, hitting Ukraine especially hard.
Company and government officials reported serious intrusions at the Ukrainian power grid, banks and government offices, where one senior official posted a photo of a darkened computer screen and the words "the whole network is down".
Ukraine's prime minister said the cyberattack is "unprecedented" but "vital systems haven't been affected".
Volodymyr Groysman also said on Facebook that "our IT experts are doing their job and protecting critical infrastructure... The attack will be repelled and the perpetrators will be tracked down."
Russia's Rosneft oil company also reported falling victim to hacking, as did Danish shipping giant AP Moller-Maersk.
"We are talking about a cyberattack," said Anders Rosendahl, a spokesman for the Copenhagen-based group.
"It has affected all branches of our business, at home and abroad."
The number of companies and agencies reportedly affected by the ransomware campaign was piling up fast, and the electronic rampage appeared to be rapidly snowballing into a real-world world crisis.
Dutch daily Algemeen Dagblaad said container ship terminals in Rotterdam run by a unit of Maersk were also affected.
Rosneft said that the company narrowly avoided major damage.
"The hacking attack could have led to serious consequences but neither the oil production nor the processing has been affected thanks to the fact that the company has switched to a reserve control system," the company said.
There is very little information about who might be behind the disruption at each specific company, but cybersecurity experts rapidly zeroed in on a form of ransomware, the name given to programs that hold data hostage by scrambling it until a payment is made.
"A massive ransomware campaign is currently unfolding worldwide," said Romanian cybersecurity company Bitdefender.
It said the malicious program appeared to be nearly identical to GoldenEye, one of a family of rogue programs that has been circulating for months.
It is not clear why the ransomware has suddenly become so much more potent.
The world is still recovering from a previous outbreak of ransomware, called WannaCry or WannaCrypt, which spread rapidly using digital break-in tools originally created by the US National Security Agency and recently leaked to the web.