06-28-2017 12:01 AM
want to know in which app and content release "Petya ransomware" attack is mitigated/protected. What code I should update it on to get the protection from this attack.
As os now, we are on 698-4026 app and content code. Please suggest.
06-28-2017 10:52 AM
If you search Petya in the Threat Vault at https://threatvault.paloaltonetworks.com/ you will find the specific content release for Pre or Post 7.1.
06-29-2017 06:16 PM
The below Palo Alto article gives you lots of good information on how to mitigate this threat.
Also, make sure that your firewall has the following Vulnerability Protection signature enabled and applied to your security rules to prevent exploitation by the EternalBlue exploit.
As for checking the AV signatures (Hashes) for this malware, as @Michael_Zook mentioned, go to https://threatvault.paloaltonetworks.com and type the name Petya in the search box, and it will list all contents for you.
I hope this helps
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!
The Live Community thanks you for your participation!