How to Prevent your System from Ransomware WannaCry Attacks?
Over the course of Friday , 12th of May 2017 we noticed multiple reports of organizations across multiple verticals being victim to a ransomware attack.
Ransomware is a type of malware that prevents or limits users from accessing their system, either by locking the system’s screen or by locking the users’ files unless a ransom is paid.
- This malware is using the MS17-010 exploit to distribute itself. This is a SMB (Server Message Block) vulnerability with remote code execution options.
- With MS17-010, the attacker can use just one exploit to get remote access with system privileges.
- By remotely gaining control over victim PC with system privileges without any user action, the attacker can spray this malware in local network by having control over one system inside the network.
- Once infected, the encrypted files contain the file extension “.WNCRYT”. Victim computers then proceed to display the below message(Screenshot)with a demand for $300 to decrypt the files.
How to prevent yourself from WannaCry attacks ?
- Think twice before clicking dangerous hyperlinks , which can be received via social networks or instant messengers. Senders can also be people you trust, including your friends or colleagues.
- If you receive any spam emails it is strongly recommended to Ignore and delete such e-mails.
- Always make sure your files re backed up. That way, if they become compromised in a ransomware attack, you can wipe your disk drive clean and restore the data from the backup.
If you have been notified that your account has been compromised, or you inadvertently clicked on a dangerous link, please follow the below instructions or contact your IT Helpdesk team.
- Run a full scan of your Anti-Virus. Check that it is Up to date and if it is not, just update it, and then run a full scan.
- As soon as possible, change your online passwords and any other online password (banking, social media sites, email, etc.). Please use a secure password with at least 8 characters made up of alphanumeric characters, upper/lowercase and special characters.
For any other queries please reach us at firstname.lastname@example.org