!

Pitt Printing Client

What You Need to Know About the Petya Ransomware Attack

Tuesday, June 27, 2017 - 20:02

 

Computing Services and Systems Development (CSSD) is aware of a new malicious software program named "Petya" that made news today for infecting corporate systems in the U.S. and Europe. "Petya" is a type of malicious software known as ransomware. This software exploit begins with a phishing attack that relies on unsuspecting users clicking on links and attachments in emails to download it. Once it has been run, it encrypts files on the affected computer and network share drives, and the user is then required to pay a ransom to recover the files. One reason this malicious software has spread so aggressively is that it then attempts to infect other computers on the network that do not have the latest security updates and are not protected against "Petya".

CSSD strongly recommends that you do not reply to unsolicited emails or emails from unverifiable sources. Avoid clicking on or downloading unknown email attachments, as these may lead to sites that contain harmful software. If a link looks suspicious, you can hover over the link with your mouse to preview the URL without clicking on it.

In addition, CSSD urges you to take these steps immediately to protect yourself:

  1. Install the latest Windows patches--especially the MS17-010 critical Windows patch available at https://technet.microsoft.com/en-us/library/security/ms17-010.aspx  and the application patches documented at https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0199.
  2. Be sure your system is running a recent version of Symantec Endpoint Protection with LiveUpdate enabled.
  3. Be sure your system is running a recent version of Malwarebytes Premium with up-to-date definitions.

With Petya, Symantec Endpoint Protection and Malwarebytes Premium are critical as an infected system will keep attempting to infect machines on the local network even if the Windows vulnerability is patched. Students, faculty, and staff can download Malwarebytes and Symantec Endpoint Protection at no cost through the Software Download Service at My Pitt. Departments can submit a help request to obtain Malwarebytes for multiple machines.

Petya is ransomware that relies on the same Windows vulnerability that was central to the last month’s “WannaCry” attacks. It will encrypt the Master File Table for NTFS partitions and overwrite the Master Boot Record with a custom bootloader. The software will then demand a ransom payment. According to reporting by security researchers, Petya leverages the EternalBlue exploit that was made public in April and used by WannaCry to spread between systems on a network. EternalBlue utilizes a known Server Message Block (SMB) 1.0 vulnerability affecting most versions of Windows.

More information on this exploit it is available at:

https://www.symantec.com/connect/blogs/petya-ransomware-outbreak-here-s-what-you-need-know

and

https://blog.malwarebytes.com/cybercrime/2017/06/petya-esque-ransomware-is-spreading-across-the-world/

 

Please contact the Technology Help Desk at 412 624-HELP [4357] if you have any questions about this announcement.
 

Pitt Printing Software for Students

Pitt Printing enables students to send print jobs from anywhere to Pitt Print stations located in CSSD computing labs and various remote locations across campus. Pitt Printing enables remote printing from Windows and Macintosh personal computers that have the Pitt Printing Client installed.

Installing the Pitt Printing Client

Overview

The Pitt Printing Service enables students to send print jobs from any location to Pitt Print Stations available in the CSSD Computing Labs and various remote locations across campus including all residence halls. You can print from Computing Labs and Computer Kiosks, as well as from almost any device with an Internet connection whether you are on or off campus. Visit Pitt Printing for a complete list of Pitt Print Station locations.

Pitt Printing: My Print Center Frequently Asked Questions

 1.     What is My Print Center?

        My Print Center lets students manage their Pitt Printing, including these tasks:

My Pitt Video: Windows Recorder Configuration

Overview

This help sheet will walk you through the basic configuration of the My Pitt Video (Panopto) Recorder on a Windows-based computer.

Basic Configuration

Run the My Pitt Video (Panopto) Recorder from Start--Programs--Panopto--Panopto Recorder. The first time you run the recorder, you will be required to log in.

1. Click the “Log in with Pitt-CourseWeb” button. The server name will be automatically entered for you.

My Pitt Video: Advanced Editing

Log in and click the Edit icon.

 

How to navigate/seek in the recording

1.  Clicking anywhere in the timeline will navigate or "seek" the video to that point

2.  Clicking on any of the events will "seek" the video to the point where that event starts

My Pitt Video: Windows Basic Recording

Overview

The My Pitt Video (Panopto) Recorder allows a lot of flexibility in how and what you can record. A presenter may wish to record alone (with one computer) or with a videographer using a separate computer. This section will cover all aspects of recording with one computer. In this recording scenario, all presentation content (PowerPoint and/or screen capture) and video/audio is recorded from one computer.