WANNA CRY (A Ransomware), the popular word today.
Ransomware is a malicious application which can be triggered by clicking on a phishing mail, image, docs, etc. and it will block the access of your data until a certain amount is not paid. And display a message for payment to unblock it. its basically based on cryptography. It will encrypt the victim files.
The concept of file-encrypting ransomware was invented and implemented by Young and Yung at Columbia University and was presented at the 1996 IEEE Security & Privacy conference. It is called cryptoviral extortion and is the following 3-round protocol carried out between the attacker and the victim.
Microsoft was not providing support from the last 2 years to these windows versions. But there was the vulnerability (MS17-010) in Microsoft windows xp,7,8 and Windows servers have been used to shut down the mass number of computers across the globe.
Important
Wanna Cry is ransomware which affected more than 230,000 computers in 150 countries till yet. It is the biggest ever cyber attack in the world till date.
Last Friday(12 May 2107) the biggest ever cyber attack across the globe has been noticed. The ransomware, also known as “WanaCrypt0r”, “WeCry”, “WanaCrypt” or “WeCrypt0r”, used a vulnerability in a Windows Server component to spread within corporate networks. The weakness was first revealed to the world as part of a massive dump of software vulnerabilities discovered by the NSA and then stolen by a group of hackers calling themselves “Shadow Brokers”. Mainly the system affected is 'Windows Server 2003 and Windows XP', user needs to aware and install the update released by the Microsoft. (which can be downloaded from its website) and (How to install).
How to protect yourself against WannaCry ransomware virus and trojans-
Ransomware is a malicious application which can be triggered by clicking on a phishing mail, image, docs, etc. and it will block the access of your data until a certain amount is not paid. And display a message for payment to unblock it. its basically based on cryptography. It will encrypt the victim files.
Payment should be in digital currency Bitcoin(1 Bitcoin=113190.04 Indian Rupee). They are giving you a time period in which you have to make the payment to take files back. After run-out of the time the amount increases and then again a time window popup. But after passing that time window, if the payment is not done, then you will lost your access to the files permanently.
The concept of file-encrypting ransomware was invented and implemented by Young and Yung at Columbia University and was presented at the 1996 IEEE Security & Privacy conference. It is called cryptoviral extortion and is the following 3-round protocol carried out between the attacker and the victim.
Microsoft was not providing support from the last 2 years to these windows versions. But there was the vulnerability (MS17-010) in Microsoft windows xp,7,8 and Windows servers have been used to shut down the mass number of computers across the globe.
MS17-010 - This security update resolves vulnerabilities in Microsoft Windows. The most severe of the vulnerabilities could allow remote code execution if an attacker sends specially crafted messages to a Microsoft Server Message Block 1.0 (SMBv1) server.
Important
- All future security and non-security updates for Windows RT 8.1, Windows 8.1, and Windows Server 2012 R2 require update 2919355 to be installed. We recommend that you install update 2919355 on your Windows RT 8.1-based, Windows 8.1-based, or Windows Server 2012 R2-based computer so that you receive future updates.
- If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see Add language packs to Windows.
Security update file names (Different for different windows version)
For all supported 32-bit editions of Windows Vista:Windows6.0-KB4012598-x86.msu
For all supported x64-based editions of Windows Vista:Windows6.0-KB4012598-x64.msu
Wanna Cry is ransomware which affected more than 230,000 computers in 150 countries till yet. It is the biggest ever cyber attack in the world till date.
Last Friday(12 May 2107) the biggest ever cyber attack across the globe has been noticed. The ransomware, also known as “WanaCrypt0r”, “WeCry”, “WanaCrypt” or “WeCrypt0r”, used a vulnerability in a Windows Server component to spread within corporate networks. The weakness was first revealed to the world as part of a massive dump of software vulnerabilities discovered by the NSA and then stolen by a group of hackers calling themselves “Shadow Brokers”. Mainly the system affected is 'Windows Server 2003 and Windows XP', user needs to aware and install the update released by the Microsoft. (which can be downloaded from its website) and (How to install).
How to protect yourself against WannaCry ransomware virus and trojans-
- Turn Windows Update on if it's disabled.
- Block port 445 for extra safety.
- Proper Backup your files.
- Be suspicious of emails, websites, and apps.
- Use an antivirus program.
- Always install the updates.
Comments
Post a Comment