BREAKING: Massive Cyberattack from ‘Petya’ Virus Hits Europe, Ukraine and Russia | Healthcare Informatics Magazine | Health IT | Information Technology Skip to content Skip to navigation

BREAKING: Massive Cyberattack from ‘Petya’ Virus Hits Europe, Ukraine and Russia

June 27, 2017
by Heather Landi
| Reprints
Click To View Gallery

According to numerous media reports, a new wave of powerful cyberattacks is causing mass disruption across Europe Tuesday, with banks, airports, the state power company and government departments in Ukraine being hit especially hard.

Several newspapers are reporting that the cyberattack has hit major companies in countries around the world.

According to The Washington Post, in a story posted at 11 a.m. Eastern time, Ukraine has reported ransom demands targeting the government and key infrastructure, and the Danish Maersk conglomerate said many of its systems were down.

“The Russian oil giant Rosneft was also hit, as was the British advertising and marketing multinational WPP. Norway’s National Security Authority said an ‘international company’ there was affected,” Washington Post reporter Andrew Roth wrote in the story.

Roth further reports, “Ukraine first reported Tuesday’s cyberattacks, saying they targeted government ministries, banks, utilities and other important infrastructure and companies nationwide, airport departure tables and demanding ransoms from government employees in the cryptocurrency bitcoin. By midafternoon, breaches had been reported at computers governing the municipal energy company and airport in Ukraine’s capital, Kiev, the state telecommunications company Ukrtelecom, the Ukrainian postal service and the State Savings Bank of Ukraine.”

Also, Ukraine’s National Bank said in a statement that an “unknown virus” has caused banks “difficulties in serving clients and carrying out banking operations,” according to the Washington Post.

Reporting from UK-based newspaper The Telegraph describes a cyberattack that has crippled firms, airports, banks and government departments in Ukraine, with Danish and Spanish multi-national firms also paralyzed by the attack. That article states that the computer virus is “a form of ransomware known as Petya.”

“In Ukraine, government departments, the central bank, a state-run aircraft manufacturer, the airport in Kiev and the metro network have all been paralyzed by the hack. In the UK, the advertising firm WPP said its systems had also been struck down, while in the Netherlands a major shipping firm confirmed its computer terminals were malfunctioning,” The Telegraph reports.

At press time, there have been no reports of cyberattacks or disruptions in the United States.

The cyberattacks is reminiscent of a widespread ransomware attack in May, called WannaCry, that affected 150 countries and crippled parts of the NHS in Britain.

Raj Samani, head of strategic intelligence at McAfee LLC, a computer security software company, issued the following statement regarding the Petya, or “PetrWrap” ransomware outbreak: “McAfee has received multiple reports of modified variants of the Petya ransomware variants. McAfee Labs is analyzing these samples and advising customers on how to address the threat in their environments. This outbreak does not appear to be as great as WannaCry but the number of impacted organizations is significant. It appears that its using the same propagation method as WannaCry, at least based on the data we have right now. Anybody running Operating Systems that have not been patched for the vulnerability WannaCry exploited could be vulnerable to this attack.”

An article in the British online newspaper The Independent provided more details about how the cyberattack is impacting the Ukrainian government. Reporter Lizzie Dearden writes, “Rozenko Pavlo, the deputy Prime Minister, said he and other members of the Ukrainian government were unable to access their computers.” And the article quotes Pavlo as writing, “We also have a network 'down'. This image is being displayed by all computers of the government.”



“The photo showed his PC displaying a message claiming a disk ‘contains errors and needs to be prepared’, urging the user not to turn it off,” Dearden wrote.

Images from other affected computers and disabled cash points showed what appeared to be ransomware, demanding a payment of $300 (£235) in Bitcoin to re-gain access to encrypted files,” according to The Independent article.


Get the latest information on Health IT and attend other valuable sessions at this two-day Summit providing healthcare leaders with educational content, insightful debate and dialogue on the future of healthcare and technology.

Learn More



Nuance Communications, which provides transcription services to our hospital is completely down since this morning (8am Pacific Daylight Time). Nuance is being very mum on this, but as far we can tell they have many, many customers without service.