A new ransomware attack, very recently has caught many organizations and users off guard. The ransomware Wannacry has infected systems across the globe and has been the topic of discussion among security professionals for quite some days now.

The new infections for the moment has been stopped by an accidental hero "MalwareTech" by activating the kill switch found after reverse engineering the malware but security experts believe that a new variant could be launched very soon with no kill switch this time and the only solution to prevent the malware from infecting systems is to patch your vulnerable systems as early as you can.

Some of the Wannacry related facts/ information:

  • Infects all Windows versions below Windows 10. No infections detected so far for Mac, IOS and Linux machines
  • There are two key components of Wannacrypt malware
  •  This domain is already sinkholed, stopping the spread of the worm.
  • However, organizations that use proxies will not benefit from the kill switch as Wannacry ransomware is not proxy aware

You know you are compromised if you see something like this on your screen

Indicators of compromise

Prevention methods:

Views: 108

Comment

You need to be a member of CISO Platform to add comments!

Join CISO Platform

 

© 2017   Created by CISO Platform   |   Powered by

Badges  |  Report an Issue  |  Privacy Policy  |  Terms of Service

Related Posts