[DavideNL]

Allegedly it's the CLOP ransomware.

"All dhcp-servers, Exchange-servers, domaincontrollers and networkdrives have been encrypted."

Source in Dutch: https://tweakers.net/nieuws/161538/deel-diensten-universitei...

Clop: https://securingtomorrow.mcafee.com/blogs/other-blogs/mcafee...

[taspeotis]

Uh so they don’t have up-to-date AV definitions? Sounds like McAfee was on it in August and Windows Defender has it no later than the 9th of December [1].

[1] I’d expect it to be earlier than that, but this article date is the only thing I’ve found: https://www.microsoft.com/en-us/wdsi/threats/malware-encyclo...