06.02.2018
On February 5, 2018, the opening ceremony of the monument to the Petya computer virus was held at the INVITRO central office on Nagatinskaya.
On February 5, 2018, the opening ceremony of the monument to the Petya computer virus was held at the INVITRO central office on Nagatinskaya.
The monument became a miniature copy of a previously installed monument in Skolkovo and symbolizes the virus defeated by the company, which paralyzed the work of INVITRO information systems in July 2017. It serves as a reminder that we live in a world of cyber threats, where ensuring the safety of confidential patient data is at the forefront. As the experience of last year's attack on the company showed, the INVITRO information security system is capable of withstanding external information challenges.
The opening ceremony was conducted by the founder and CEO of the company, Alexander Ostrovsky. It was also attended by Deputy General Director Vitalina Levashova, Director of the Technology Department Elena Kondrasheva, and Director of Corporate Communications Anton Bulanov.
Memorable prizes were awarded to the employees who were most active in eliminating the virus attack.
Earlier, on December 18, 2017, INVITRO for the first time in the world erected a monument to the Petya computer virus. It was installed near the building of the Skolkovo Technopark and is made in the form of a bitten hard drive.
On June 27, 2017, a number of large companies were attacked by the Petya ransomware virus. The malware encrypted files on personal computers and then demanded a ransom to restore access to the files. Among the blocked companies were MAERSK, MERK, the Cadbury confectionery factory in Australia, Home Credit Bank, GAZPROM, ROSNEFT and MARS in Russia, as well as INVITRO. The damage from the attack amounted to more than $8 billion.
The Invitro Clinic suspended the collection of biomaterial and the issuance of test results in Russia, Belarus and Kazakhstan due to a large-scale cyber attack. The company assures that clients’ personal data has not been affected.
The medical company Invitro suspended the collection of biomaterial and the issuance of patient test results due to a hacker attack on June 27. Anton Bulanov, director of corporate communications of the company, told RBC about this.
“The attack itself occurred around 14:00 on June 27. At the moment, the reception of biomaterial is suspended. And there may be some delays in issuing the results of previously done studies,” Bulanov said.
One of Invitro’s clients told RBC that he tried to get the result of his analysis on June 29. But the company apologetically informed him that this could only be done in three days.
According to Bulanov, experts are still working to eliminate the consequences of the attack. “I think that within the next 1-2 days everything will be completely returned to normal, because a huge amount of work has been done,” he noted, emphasizing that there was no leak of clients’ personal data.
“All places where personal data is stored provided for such security measures that it is practically impossible to penetrate, unless you physically take away the media,” Bulanov assured. “There is no leak of personal data,” he emphasized.
As stated in the message on the company’s website, Invitro will soon return to normal operation. The results of studies conducted after this time will be delivered to patients after the technical failure has been resolved. At the moment, the laboratory information system has been restored and the process of setting it up is underway. “We regret the current force majeure situation and thank our customers for their understanding,” Invitro concluded.
According to these data, clinics in Russia, Belarus and Kazakhstan were attacked by a computer virus.
Invitro, together with other organizations in Russia, suffered a large-scale cyber attack with the Petya virus on June 27. Then the company announced temporary restrictions on urgent research.
Companies and government agencies in many European countries and the United States have become victims of the second large-scale cyberattack after the WannaCry virus. Several enterprises in France, as well as companies in the UK, Hungary, Lithuania, Poland, Ukraine and other countries, were subject to a hacker attack. Experts named the new encryption virus Petya as the culprit. Within a day, the virus spread to Europe and then to the United States. Later the virus spread to Asian countries.
According to blockchain records, 3.99 bitcoins were transferred to the bitcoin “wallet” 1Mz7153HMuxXTuR2R1t78mGSdzaAtNbBWX, indicated by the extortionists, at the time of publication of the note through 45 transactions. The price of 1 bitcoin, according to Coindesk, is currently $2,574.46. Thus, in terms of Coindesk exchange rates, the hackers managed to earn $10.3 thousand.
Today, clients of the independent laboratory “Invitro” encountered an announcement that is atypical for our latitudes. On the doors of the institution, all visitors were greeted by the inscription: “Due to a massive hacker attack, it is impossible to take biomaterial and issue results. We apologize for the inconvenience caused." This might seem like a prank or a bad joke, but no: the hacker attack is not fiction. Information about the existence of problems with Onliner.by was confirmed by the Chairman of the Supervisory Board, Vitaly Shiyanov.
“Dear clients, due to a hacker attack on the company’s infrastructure, the time for providing a number of services in Russia and Belarus has been temporarily increased. Medical offices are operating as normal, with temporary limited CITO testing and priority testing. Research results can be obtained in your personal account on the Company’s website. Please note that all personal data of INVITRO clients is completely secure. We regret the current situation and are doing everything possible to correct it,”- says on the company's official Facebook page.
- There really is a hacker attack, we are now working to eliminate it. Unfortunately, because of this, we are not yet able to fully fulfill our obligations to patients and provide them with results on time. I can’t make exact forecasts yet, but we hope that from tomorrow we will restore full-fledged work, all services are working on this. For now, our main problem is communication with the outside world. I would like to apologize to our customers and reassure: all personal data is stored in another place and they will not be harmed,- assured Vitaly Shiyanov.
What kind of attack is this?
Obviously, the problems of the independent laboratory “Invitro” are related to the “Petya” ransomware virus, which today attacked many institutions in Russia and Ukraine. The company is part of an international holding, and therefore the difficulties of its neighbors turned out to be very close to it.
According to preliminary data, many companies were affected by the virus, which manifested itself around 14:00, including Bashneft and Rosneft, Zaporozhyeoblenergo, Dneproenergo, Dneprovskaya Electric Power System, Mondelez International, Oschadbank. , Mars, Nova Poshta, Nivea, TESA and others. Ukrainian government computers and Auchan stores were also attacked. In addition, the virus caused a disruption in the operation of the Kyiv metro: passengers cannot pay for travel using bank cards.
The laboratory has suspended the acceptance of biomaterials for analysis in Russia, Kazakhstan and Belarus. The company assures that clients’ personal data is duplicated and is not affected.
The Invitro laboratory has suspended the acceptance of biomaterials for analysis in Russia, Kazakhstan and Belarus due to a cyber attack. The Petya virus attacked Invitro servers on Tuesday, June 27, according to the company’s message. “Reception of biomaterial has been temporarily suspended. We are doing everything to resume work. All patient requests will be carefully processed on an individual basis,” Invitro notes.
The company now has more than 900 medical offices. Personal data of clients was not affected, says Director of Corporate Communications and Marketing of Invitro Anton Bulanov:
— For now, we have temporarily suspended the intake of biomaterial. Due to the hacker attack, we have suffered some damage to our IT system, since for Invitro it is a life support system, because the company is highly automated. This includes all analyzer devices, all information storage systems, all customer information systems, and so on. Now recovery is very active, that is, within one or two days we will return to normal work, everyday, as usual. Now most of the problems that the virus created have been eliminated. These are two viruses that act one after the other. This is the Petya virus, which first gets into the system, and then it gives the second virus, whose name is Misha.
— What does Misha do, does he encrypt or steal, delete?
— Misha encrypts, and Petya infects the system and blocks some basic properties, and then gets here and causes quite significant damage.
— And the data with tests that people have already taken, which you managed to obtain and enter, did you manage to enter, were they saved, or did you lose something?
— Firstly, the data is not lost: neither analysis data, nor any other personal data of our clients. All systems related to the storage of personal data are duplicated, and the data is securely stored.
The Petya ransomware attack, which blocks access to data and demands money for unlocking, became known on June 27. The virus began to actively spread across computer networks in Russia and Ukraine. In particular, Mars, Nivea, Ukrtelecom and others were attacked. According to Group-IB, which specializes in computer security and protection against cyber threats, more than 80 companies were affected by the virus in Russia and Ukraine.
28.06.2017
The cyber attack that the largest companies around the world were subjected to yesterday did not bypass INVITRO.
The cyber attack that the largest companies around the world were subjected to yesterday did not bypass INVITRO. At the moment, all measures are being taken to eliminate the damage caused to our infrastructure. We declare with full responsibility that the personal data of our clients was not damaged or obtained by attackers.
Unfortunately, due to the attack, some processes were affected - in particular, the time for issuing test results was increased. The results of studies conducted by laboratory complexes before 14:30 on June 27 were sent to patients using their personal account and mobile application. The results of studies conducted after this time will be delivered to patients after the technical failure has been resolved. At the moment, the laboratory information system has been restored and the process of setting it up is underway.
INVITRO medical offices maintain time restrictions on CITO studies and priority testing. The biomaterial obtained during the period of technical failure was stored in compliance with all preanalytical requirements and will be processed by INVITRO laboratory complexes.
The work of the federal information service has been restored; all information can be obtained by calling the hotline: 8-800-200-363-0
The company will return to normal operation in the near future. Please note that received requests, comments and complaints will be carefully studied and processed by the company’s specialists.
We regret the current force majeure situation and thank our customers for their understanding.
