It seems that there is no rest for the workers who are in charge of security in the Telefónica company, which is still affected by this powerful ramsomware attack and has decided to shut down all the computers at its headquarters to avoid greater evils. In principle, this attack that affects more companies according to some media, is causing real problems for the operator that has seen its entire internal network affected by this attack from China or Russia. There is no specific data on this but the main problem is not where the attack itself comes from, but the magnitude of it and the state of technical exception that the company has had to decree.
All the security protocols have been activated, and they are working to the maximum to prevent possible attacks on networks of other large companies that are initially taking the same measures as those of Telefónica as if they have been affected and are turning off their computers to avoid risks. It is actually the only thing that can be done despite having a backup of the data in the cloud for this type of attack you can save the data or part of it, depending a lot on the size of this ransomware.
For now we are clear that This cyberattack does not affect users or the company's services beyond its internal network. For now, the main cause of this attack by cybercriminals is money and the first ransom speaks of about 330 dollars to be paid in Bitcoins that could be doubled if they do not meet the established payment terms and that could finally cause the loss of data encrypted if payment is not made.
Close all computers
This has been the first and only action taken by the company to prevent the number of infected computers from increasing. So right now all of Telefónica's computers at the state level are disconnected. The company issued an internal statement (similar to the one we leave below) in which all employees are asked to unplug and shut down equipment until further notice. It is important not to have your computer or smartphone connected to the WiFi network either to prevent this virus from continuing to spread, therefore the total disconnection of computers and devices has been requested.
Disconnect the VPN
Another important step that has been taken to prevent the spread of the computer virus is disconnecting VPNs. These VPNs are used so that companies that are connected to the Telefónica network are not affected by the virus.
VPNs are services that allow remote access to intranet or internal networks companies and therefore it is best to disconnect to prevent the virus from spreading. External telemarketers are far from company headquarters, but if they connect from the VPN, they could get malware.
Wait, work and find solutions
Right now they just have to get down to work to save all the data they can and hope that the scope of the ransomware is not too great. We imagine that the work to combat this attack continues to be frantic and therefore we must wait for official announcements. Above all be patient, work to fix the problem and not taking the laptop or computer home to continue with the task at home, since it could spread the virus more.
This is a hard blow for Telefónica and it will be necessary to closely follow the decisions made by the Spanish operator that has been altered this Friday by this powerful ransomware attack that could initially affect other companies such as Gas Natural, Iberdrola , BBVA that seems to deny the attack from social networks or Banco Santander. In short a attack that puts all financial institutions and companies in the country on alert that has seen its usual activity cut short by this powerful attack.
Pos na, it will touch a rise in prices to alleviate the losses ... .. let's not forget that it is timofonica