Today's update on Petya
Previously, it was believed that the ransomware would not begin encrypting until an hour after the initial infection. It is now been discovered that it begins encrypting the first 1MB of the below file types upon infection. Therefore turning off your device when viewing the reboot message, will not stop encryption.
It is also now being disputed if the goal of this attack was to collect Bitcoin or cause mass destruction in the devices it infects.
This Patch Tuesday comes with 74 security updates, including fixes for two known vulnerabilities (CVE-2018-0808 and CVE-2018-0940); luckily this release arrives in a more timely fashion, as there have been no known exploitations of these vulnerabilities like we’ve seen in the past.
There are bound to be varying opinions on the legality and/or morality of Geek Squad's practice of turning over client data to the FBI; especially considering that at least one instance allegedly led to the GS employee being paid for the info. I am intrigued to hear what others think about this.