Urgent Threat Update to Advice on Petya
Please be alerted that a new strain of ransomware is spreading fast based upon Petya which renders servers and machines useless. Comments on VirusTotal indicate the usage of the EternalBlue exploit but this has not yet been confirmed but is the likely entry point. The ransomware clears the windows event log using Wevtutil, writes a message to the raw disk partition and shuts down the machine.
Further companies have been affected today and advice has now been amended. Please see the advisory below, point 3 is of particular importance.