May 23, 2017

Webroot can Protect You from WannaCry Ransomware

Over the last few months, up to 100 countries have been affected by a worldwide ransomware called WannaCry. Many countries such as Russia, Taiwan and Ukraine were among the top targets.

What is WannaCry?

WannaCry is a ransomware that first made its appearance back in March. It uses the NSA 0-day EternalBlue and DoublePulsar, both tools released by a hacker group called The Shadow Brokers. WannaCry targets computers that run on Microsoft Windows. Initially, the ransomware spread through emails as well as fake invoices and other types of lures with a .zip file containing the infection. Once the computer was affected, a message informs the user that the files are now encrypted and demands a payment. As of date, almost 300 payments totalling over $100,000 have been transferred.

WannaCry was able to exploit a flaw in Microsoft Windows’ Server Message Block (SMB), which was later patched by Microsoft in March. Nonetheless, many enterprises hadn’t installed the latest security update or were running the older Windows XP, which put them at greater risk. XP has not been updated with a security patch since 2014.

How Can I Protect Myself from WannaCry?

Genatec can help protect you from WannaCry ransomware by using Webroot SecureAnywhere. Ask one of our techs if your systems are properly updated and if you are currently at risk or potentially even already infected! Call 514-855-1223 for help now.

Related Posts