Cadbury factory in Hobart hit as ransomware attacks Aussie businesses

Petra malware used exploit patched two months ago

At least two Australian companies have been hit following a global ransomware outbreak, with the Cadbury factory in Hobart one of the local businesses impacted.

The global attack - which originated in Ukraine on 27 June and quickly spread to Russia, parts of Europe the US and India - has now reached Australian shores, impacting both Cadbury and DLA Piper, a global law firm with local offices.

Mondelez International, the parent company of the chocolate manufacturer, has confirmed the attack, advising that systems have been down since last night.

Australian Manufacturing Workers Union Tasmanian president, John Short, told ARN that Cadbury's Claremont facility was hit at approximately 9:30pm on 27 June, with all production at the facility halted since.

“In talking to people, it appears all the computers had gone down and the employees are now set to cleaning duties,” he said.

Short added that no employees had been sent home as a result of the attack.

In addition, Australian staff from global law firm DLA Piper have been told the local offices were the victim of a “major cyber incident”, according to the ABC.

The ABC reported that Australian staff were advised via text early on 28 June that all DLA Piper IT systems have been taken down to contain the situation and have been warned not to attempt to log in to their computers or turn them on.

A text message sent to DLA Piper Australia staff this morning (Source: ABC)
A text message sent to DLA Piper Australia staff this morning (Source: ABC)

The Federal Government’s Stay Smart Online service has warned that businesses, individuals and households who have not updated Microsoft Windows software are potentially vulnerable to the virus.

The Minister assisting the Prime Minister for cyber security, Dan Tehan, has also urged small businesses to take urgent action to improve cyber security practices in the wake of a second global ransomware attack in as many months.

"We are aware of the situation and monitoring it closely, we are in contact with our Five Eyes partners,” Tehan said. “It appears to be the same vulnerability as Wannacry.

“All businesses should immediately update their Windows operating system with the latest security patches and there are instructions on the ACSC website to do this. This ransomware attack is a wake-up call to all Australian businesses to regularly backup their data and install the latest security patches."

The government said it will continue to provide updates on this issue.

Specifically, the Petya or GoldenEye ransomware strain exploits a vulnerability in Microsoft Windows which was exposed in the recent Wannacry outbreak.

The company patched the vulnerability in March but due, at least in part, to ineffective patch policies, many companies, including the victims of the recent attack were hit.

At this stage, several global companies have confirmed to have fallen victim to the ransomware attack, including Chernobyl’s radiation monitoring system; DLA Piper; pharmaceutical company Merck; a number of banks in Europe and the US; an airport; the Kiev metro; Danish shipping and energy company Maersk; British advertiser WPP and Russian oil industry company, Rosnoft.

At a global level, the ransomware was widespread in Ukraine - where the attack appears to have originated affecting Ukrenergo, the state power distributor, and several of the country’s banks.

Cyber security company, Bitdefender, confirmed in a blog post that the GoldenEye / Petya ransomware leverages the EternalBlue exploit to spread from one computer to another. It added that additional exploits are also used to propagate.

The EternalBlue exploit is one of the tools used in the recent Wannacry outbreak and is believed to have been originally developed by the NSA.

Join the newsletter!

Error: Please check your email address.
Rocket to Success - Your 10 Tips for Smarter ERP System Selection

Tags goldeneyePetyaCadburyDLA Piperransomwaremalware

Keep up with the latest tech news, reviews and previews by subscribing to the Good Gear Guide newsletter.
Chris Player
Show Comments

Most Popular Reviews

Latest Articles


PCW Evaluation Team

Matthew Stivala

HP OfficeJet 250 Mobile Printer

The HP OfficeJet 250 Mobile Printer is a great device that fits perfectly into my fast paced and mobile lifestyle. My first impression of the printer itself was how incredibly compact and sleek the device was.

Armand Abogado

HP OfficeJet 250 Mobile Printer

Wireless printing from my iPhone was also a handy feature, the whole experience was quick and seamless with no setup requirements - accessed through the default iOS printing menu options.

Azadeh Williams

HP OfficeJet Pro 8730

A smarter way to print for busy small business owners, combining speedy printing with scanning and copying, making it easier to produce high quality documents and images at a touch of a button.

Andrew Grant

HP OfficeJet Pro 8730

I've had a multifunction printer in the office going on 10 years now. It was a neat bit of kit back in the day -- print, copy, scan, fax -- when printing over WiFi felt a bit like magic. It’s seen better days though and an upgrade’s well overdue. This HP OfficeJet Pro 8730 looks like it ticks all the same boxes: print, copy, scan, and fax. (Really? Does anyone fax anything any more? I guess it's good to know the facility’s there, just in case.) Printing over WiFi is more-or- less standard these days.

Ed Dawson

HP OfficeJet Pro 8730

As a freelance writer who is always on the go, I like my technology to be both efficient and effective so I can do my job well. The HP OfficeJet Pro 8730 Inkjet Printer ticks all the boxes in terms of form factor, performance and user interface.

Michael Hargreaves

Windows 10 for Business / Dell XPS 13

I’d happily recommend this touchscreen laptop and Windows 10 as a great way to get serious work done at a desk or on the road.

Featured Content

Latest Jobs

Don’t have an account? Sign up here

Don't have an account? Sign up now

Forgot password?